Outer Web | Explore

Explore >> Select a destination

You are here		thehackernews.com Popular NPM Package Hijacked to Publish Crypto-mining Malware
\|	\|	snyk.io The XZ backdoor CVE-2024-3094 \| Snyk	2.0 parsecs away Travel
\|	\|	On the 29th of March 2024, the high-stakes investment and prolonged campaign to plant a backdoor in the Linux software library liblzma to gain access to multiple operating systems via Linux distributions was carried out by a malicious actor.	2.0 parsecs away Travel
\|	\|	www.sonatype.com Russia-Linked 'Lumma' Crypto Stealer Now Targets Python Devs	3.4 parsecs away Travel
\|	\|	Sonatype's malware detection identified a malicious PyPI package called crytic-compilers, connected to Russia-linked Lumma Windows stealer. Learn More.	3.4 parsecs away Travel
\|	\|	www.imperva.com Imperva Protects Against Critical Apache OFBiz Vulnerability (CVE-2024-45195) \| Imperva	3.5 parsecs away Travel
\|	\|	Recently, a critical vulnerability in the widely used Apache OFBiz framework was disclosed, designated CVE-2024-45195. This vulnerability allows for unauthenticated remote code execution (RCE), making it an especially dangerous flaw for organizations using OFBiz in their business operations. An attacker without valid credentials can exploit missing view authorization checks in the web application, bypassing previous [...]	3.5 parsecs away Travel
\|	\|	claroty.com VPN Security Flaws Pose Cyber Risk to Remote OT Personnel \| Claroty	20.7 parsecs away Travel
\|		Claroty researchers have discovered multiple vulnerabilities in popular industrial VPN-based solutions that provide remote access. Learn more.	20.7 parsecs away Travel