New npm attack poisons local packages with backdoors

Published on March 26, 2025

Two malicious packages were discovered on npm (Node package manager) that covertly patch legitimate, locally installed packages to inject a persistent reverse shell backdoor. [...]

Continue reading on website
Other news

Sparring in the Cyber Ring: Using Automated Pentesting to Build Resilience

March 26, 2025
“A boxer derives the greatest advantage from his sparring partner…” — Epictetus, 50–135 ADHands up. Chin tucked. Knees bent. The bell rings, and both boxers meet in the center and circle. Red throws out three jabs, feints a fourth, and—BANG—lands a right hand on Blue down the center.This wasn’t Blue’s first day and despite his solid defense in front of the mirror, he feels the pressure.

Microsoft: Recent Windows updates cause Remote Desktop issues

March 26, 2025
Microsoft says that some customers might experience Remote Desktop and RDS connection issues after installing recent Windows updates released since January 2025. [...]