Cybersecurity researchers from JFrog recently discovered three malicious campaigns in Docker Hub – Docker’s cloud-based registry service for storing and sharing container images. These campaigns contained millions of repositories that pushed generic trojan malware to the developers. The conclusion of JFrog’s findings is that with open-source repositories such as Docker Hub, keeping them clean of … Read more
Security researchers have spotted another malicious advertising campaign in Google Ads that sees hackers impersonating multiple legitimate software companies. While definitely not the first of its kind, this campaign was said to be unique for distributing a sophisticated Windows backdoor. The campaign was first spotted by cybersecurity researchers from Zscaler Threat labs, who noted between … Read more
Google is upgrading Chrome’s Safe Browsing security tool by allowing it to provide constant protection against suspicious websites in real-time. Before going into the update itself, it’s worth covering the backstory. Safe Browsing gives the Chrome browser a list of thousands of well-known, unsafe websites on the internet. Whenever you visit a webpage, the software … Read more
Be careful when downloading Python packages from PyPI – researchers have found some are malicious and looking to steal your cryptocurrency haul. Cybersecurity researchers from ReversingLabs recently discovered seven such packages, whose goal is to steal BIP39 mnemonic phrases from its victims. A cryptocurrency wallet is secured in two ways: with a password, and with … Read more