HackDig : Dig high-quality web security articles

GitHub: Nearly 100,000 NPM Users’ credentials stolen in the April OAuth token attack

GitHub provided additional details into the theft of its integration OAuth tokens that occurred in April, with nearly 100,000 NPM users’ credentials. GitHub provided additional details about the incident that suffered in April, the attackers were able to steal nearly 100K NPM users’ credentials. In April, GitHub uncovered threat actors usin
Publish At:2022-05-28 07:09 | Read:557 | Comments:0 | Tags:Breaking News Hacking GitHub hacking news IT Information Sec

Ukraine government and pro-Ukrainian sites hit by DDoS attacks

The Computer Emergency Response Team in Ukraine (CERT-UA) has announced that Ukraine government web portals and pro-Ukraine sites are subjected to ongoing DDoS (distributed denial of service) attacks. They don’t currently know who is behind these attacks. The attack involves injecting a malicious JavaScript (JS)—officially named “BrownFlood
Publish At:2022-04-29 04:56 | Read:512 | Comments:0 | Tags:Security world BrownFlood CERT-UA compromised WordPress site

Fighting Fake EDRs With ‘Credit Ratings’ for Police

When KrebsOnSecurity recently explored how cybercriminals were using hacked email accounts at police departments worldwide to obtain warrantless Emergency Data Requests (EDRs) from social media firms and technology providers, many security experts called it a fundamentally unfixable problem. But don’t tell that to Matt Donahue, a former FBI agent who r
Publish At:2022-04-27 12:18 | Read:1371 | Comments:0 | Tags:A Little Sunshine The Coming Storm Web Fraud 2.0 apple AT&T

Stolen OAuth tokens used to download data from dozens of organizations, GitHub warns

h2>GitHub reported that threat actors used stolen OAuth user tokens to exfiltrate private data from several organizations. GitHub uncovered threat actors using stolen OAuth user tokens to gain access to their repositories and download private data from several organizations. Threat actors abused stolen OAuth user tokens issued to two third-party OAuth
Publish At:2022-04-17 13:05 | Read:835 | Comments:0 | Tags:Breaking News Hacking authentication Cybersecurity cybersecu

Dependency Review GitHub Action prevents adding known flaws in the code

h2>Dependency Review GitHub Action scans users’ pull requests for dependency changes and will raise an error if any new dependencies have existing flaws. GitHub announced Dependency Review GitHub Action which scans users’ pull requests for dependency changes and will raise an error if any new dependencies have existing flaws that can be exploi
Publish At:2022-04-11 06:26 | Read:1438 | Comments:0 | Tags:Breaking News Security Cybersecurity cybersecurity news Depe

Pro-Ukraine ‘Protestware’ Pushes Antiwar Ads, Geo-Targeted Malware

Researchers are tracking a number of open-source “protestware” projects on GitHub that have recently altered their code to display “Stand with Ukraine” messages for users, or basic facts about the carnage in Ukraine. The group also is tracking several code packages that were recently modified to erase files on computers that appear to
Publish At:2022-03-17 20:33 | Read:1416 | Comments:0 | Tags:Russia's War on Ukraine The Coming Storm alex holden GitHub

North Korea’s Lazarus APT leverages Windows Update client, GitHub in latest campaign

This blog was authored by Ankur Saini and Hossein Jazi Lazarus Group is one of the most sophisticated North Korean APTs that has been active since 2009. The group is responsible for many high profile attacks in the past and has gained worldwide attention. The Malwarebytes Threat Intelligence team is actively monitoring its activities and was able to spot
Publish At:2022-01-27 12:46 | Read:2708 | Comments:0 | Tags:Threat Intelligence APT GitHub Lazarus

GitHub addressed two major vulnerabilities in the NPM package manager

Maintainers of the npm package manager for the JavaScript programming language disclosed multiple flaws that were recently addressed. GitHub disclosed two major vulnerabilities in the npm that have been already addressed. The first vulnerability can be exploited by an attacker to publish new versions of any npm package using an account without proper a
Publish At:2021-11-16 18:44 | Read:1910 | Comments:0 | Tags:Breaking News Security GitHub Hacking hacking news informati

Google open-sourced Allstar tool to secure GitHub repositories

Google has open-sourced the Allstar tool that can be used to secure GitHub projects and prevent security misconfigurations. Google has open-sourced the Allstar tool that can be used to secure GitHub projects by enforcing a set of security policies to prevent misconfiguration. “Allstar is a GitHub App installed on organization
Publish At:2021-08-13 04:47 | Read:1401 | Comments:0 | Tags:Breaking News Security Allstar GitHub Hacking hacking news i

FragAttacks: Everything You Need to Know

A cybersecurity researcher discovered a new category of Wi-Fi vulnerabilities recently. But the surprising news is that this new category is actually very old. Called FragAttacks, these 12 Wi-Fi vulnerabilities have existed since the late 90s. But they’re new to the cybersecurity world because people only recently discovered and described th
Publish At:2021-07-19 15:38 | Read:1286 | Comments:0 | Tags:Advanced Threats Malware Network Threat Hunting fragattack G

GitHub paid out over $500K through its bug bounty program for 203 flaws in 2020

Code repository hosting service GitHub announced that it has paid out more than $1.5 million through its bug bounty program since 2016. Code repository hosting service GitHub announced that it has paid $524,250 through its bug bounty program for 203 vulnerabilities affecting its products and services in 2020. The company revealed that it paid more than $1
Publish At:2021-06-29 03:36 | Read:1633 | Comments:0 | Tags:Breaking News Security Bug Bounty Cybersecurity GitHub Hacki

Attackers are abusing GitHub infrastructure to mine cryptocurrency

The popular code repository hosting service GitHub is investigating a crypto-mining campaign abusing its infrastructure. Code repository hosting service GitHub launched an investigation in a series of attacks aimed at abusing its infrastructure to illicitly mine cryptocurrency. Such kind of attacks was reported at least since the end of 2020, when some
Publish At:2021-04-03 08:40 | Read:2136 | Comments:0 | Tags:Breaking News Hacking Malware Cryptocurrency miner GitHub ha

ProxyLogon PoCs trigger a game of whack-a-mole

As we reported recently, the use of the Microsoft Exchange Server ProxyLogon vulnerabilities has gone from “limited and targeted attacks” to a full-size panic in no time. Criminal activities, ranging in severity from planting crypto-miners to deploying ransomware, and conducted by numerous groups, have quickly followed the original exploitation by APT gro
Publish At:2021-03-16 17:12 | Read:1766 | Comments:0 | Tags:Exploits and vulnerabilities exchange exchange server GitHub

Jupyter Notebook for crt.sh Queries

Hey All, Long time no blog. During a recent OSINT investigation, I found that I needed to pull all domains found from my query on crt.sh. The problem I had, however, was that the results weren’t all that usable without a lot of copying, pasting, and cleaning. To address this problem, and to save time in the future, I created a Jupyter Notebook to progr
Publish At:2021-02-10 01:58 | Read:1944 | Comments:0 | Tags:Security Research Tools andrew hay crt.sh CrtShcrape github

New alleged MuddyWater attack downloads a PowerShell script from GitHub

Security expert spotted a new piece of malware that leverages weaponized Word documents to download a PowerShell script from GitHub. Security expert discovered a new piece of malware uses weaponized Word documents to download a PowerShell script from GitHub. This PowerShell script is also used by threat actors to download a legitimate image f
Publish At:2021-01-04 06:42 | Read:2258 | Comments:0 | Tags:APT Breaking News Hacking GitHub hacking news information se

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3