February 27, 2024 at 08:51AM The Xeno RAT, an open-source remote access trojan, has been released on GitHub, with capabilities for remote system management and unique features such as real-time audio recording and hidden virtual network computing module. This release underscores the rise of freely available malware, highlighted by cybersecurity firm Cyfirma. Additionally, the article … Read more
February 23, 2024 at 05:21AM Microsoft has introduced PyRIT, an open access red teaming tool created to aid security professionals and ML engineers in identifying risks associated with generative AI. The tool automates tasks, enhances audit efficiency, and addresses the unique challenges of red teaming generative AI. It offers control over strategy and execution, supports … Read more
February 12, 2024 at 01:27AM Microsoft is introducing Sudo for Windows 11, allowing users to run elevated commands from an unelevated console session, providing an ergonomic solution to elevate commands without opening a new console. This feature is available in Windows 11 builds 26045 and later, and comes with three options. The project is also … Read more
January 31, 2024 at 12:36PM An employee’s leaked GitHub token at Mercedes-Benz allowed unrestricted access to source code on the carmaker’s GitHub Enterprise server. The breach, discovered in January 2024, could have led to extensive exposure of critical information. RedHunt Labs warns of potential financial and reputational damage. GitHub and other firms have also faced … Read more
January 30, 2024 at 05:07PM CyberArk has developed an online version of ‘White Phoenix,’ an open-source ransomware decryptor for victims not familiar with coding. It supports PDFs, Word, Excel, ZIPs, and PowerPoint files, with a 10MB size limit. However, it only helps victims targeted by specific ransomware strains using intermittent encryption. While not guaranteed, it … Read more
January 23, 2024 at 01:05PM Two malicious npm packages, warbeast2000 and kodiak2k, leveraged GitHub to store stolen Base64-encrypted SSH keys. They were discovered and taken down after attracting 412 and 1,281 downloads. The modules run a postinstall script to execute JavaScript files, potentially compromising security. The incident highlights ongoing supply chain security threats. Some key … Read more
January 18, 2024 at 12:37PM Haier issued a takedown notice to a developer for creating Home Assistant integration plugins for its home appliances on GitHub. The developer received a legal threat demanding the removal of the tools citing unauthorized use and significant economic harm. The plugins, although open-source, may incorporate Haier’s intellectual property. Haier’s actions … Read more
January 17, 2024 at 08:30AM GitHub rotated credentials and addressed a vulnerability impacting GitHub.com and GitHub Enterprise Server after receiving a vulnerability report. The security defect allowed access to credentials within a production container but had minimal impact. GitHub resolved the flaw and released patches for GitHub Enterprise Server, also rotating the private GitHub GPG … Read more
January 17, 2024 at 03:15AM GitHub has responded to a security vulnerability by rotating some keys, including the GitHub commit signing key, GitHub Actions, GitHub Codespaces, and Dependabot customer encryption keys. The vulnerability, CVE-2024-0200, has not been exploited in the wild, but GitHub has addressed it with patches. Another bug, CVE-2024-0507, has also been resolved … Read more
January 16, 2024 at 05:23PM GitHub resolved vulnerabilities enabling attackers to access credentials in production containers by patching CVE-2024-0200. The update applies to GitHub Enterprise Server versions 3.8.13, 3.9.8, 3.10.5, and 3.11.3. While potential exploitation requires an organization owner role, GitHub rotated exposed credentials and urges swift security update installation. Additionally, a command injection vulnerability … Read more