FortiBleed: You Cannot Patch a Valid Login by Lucie Cardiet
FortiBleed exposed valid logins for 86,644 Fortinet firewalls. No CVE, nothing to patch. Why a working login slips past prevention, and where to catch it.
Vectra.ai Blog·
TeamPCP open-sourced Shai-Hulud today. The OIDC token extraction technique that made the TanStack attack different from every previous campaign is now a public toolkit.
Read full articleFortiBleed exposed valid logins for 86,644 Fortinet firewalls. No CVE, nothing to patch. Why a working login slips past prevention, and where to catch it.
A year of AI-enabled attacker activity, what it tells us about where attacks are headed, and where detection holds up.
The breach highlights the vulnerability of software supply chains, potentially impacting countless projects reliant on GitHub's infrastructure. The post TeamPCP breaches GitHub, accessing 3,800 internal code repositories appeared first on Crypto Briefing.
The Shai-Hulud supply-chain malware campaign is exploiting the automated systems developers trust to publish software safely.
TeamPCP gained access to GitHub's private source code after an employee unknowingly installed a malicious coding tool.
The world’s largest open-source registry, node package manager (npm), has been hit by another fast-moving malware attack, this time targeting the widely-used AntV enterprise data visualization tool. Unlike last week’s high-profile npm attack on TanStack, which exploited a complex GitHub Actions cache poisoning weakness, the latest incident early on May 19 took the more conventional route of compromising the credentials of a high-value npm maintainer account. According to analysis by SafeDep, the account in question, atool (i@hust.cc), which publishes the timeago.js JavaScript library, had rights to a large catalog of packages, including popular tools such as size-sensor (4.2 million downloads per month), echarts-for-react (3.8 million), @antv/scale (2.2 million), and timeago.js (1.15 million). This privilege level allowed the attacker to publish at least 637 malicious versions across 317 different npm packages in a single 22-minute burst. This resulted in the compromise of a big chunk
OpenAI says malware tied to the Shai-Hulud supply chain attack accessed internal repositories after infecting two employee devices.
The post OpenAI says no user data exposed after TanStack npm supply chain attack hit employee devices appeared on BitcoinEthereumNews.com. OpenAI has admitted that two employee devices were compromised through malicious versions of TanStack npm packages. The company is insisting that no evidence that user data, production systems, or intellectual property were tampered with was found. Was OpenAI hacked? OpenAI has confirmed that malicious actors breached two of its employee devices as part of a massive software supply chain campaign called “Mini Shai-Hulud.” OpenAI previously deployed controls to limit supply chain attack exposure after an incident with Axios, but the two affected employee devices had not yet received the updated configurations that would have blocked the malicious package download. The attack targeted TanStack, an open-source library used by millions of developers. The attackers published 84 malicious versions across 42 npm packages, including the popular @tanstack/re