Outer Web | Explore

Explore >> Select a destination

You are here		www.koi.security First Malicious MCP in the Wild: The Postmark Backdoor That's Stealing Your Emails \| Koi Blog
\|	\|	www.sysdig.com Shai-Hulud: The novel self-replicating worm infecting hundreds of NPM packages \| Sysdig	3.2 parsecs away Travel
\|	\|	A new supply chain attack against the NPM repository is using novel, self-propagating malware (also known as a worm) to continue spreading itself.	3.2 parsecs away Travel
\|	\|	www.sonatype.com CVE-2024-3094 The targeted backdoor supply chain attack against XZ and liblzma	3.9 parsecs away Travel
\|	\|	Learn about a new, targeted backdoor supply chain attack against the popular XZ compression utility seen in many Linux distributions such as fedora and debian. Understand its impact, potential risks and what you can do about it.	3.9 parsecs away Travel
\|	\|	www.reversinglabs.com A software supply chain meltdown: What we know about the XZ Trojan	3.7 parsecs away Travel
\|	\|	Software tampering and social engineering were used in a months-long campaign to plant malicious code in major Linux distributions. Here's what we know.	3.7 parsecs away Travel
\|	\|	0xdf.gitlab.io HTB: Active \| 0xdf hacks stuff	22.3 parsecs away Travel
\|		Active was an example of an easy box that still provided a lot of opportunity to learn. The box was centered around common vulnerabilities associated with Active Directory. There's a good chance to practice SMB enumeration. It also gives the opportunity to use Kerberoasting against a Windows Domain, which, if you're not a pentester, you may not have had the chance to do before.	22.3 parsecs away Travel