CISA Debuts ‘Secure by Design’ Alert Series

November 30, 2023 at 06:06AM The US cybersecurity agency CISA launched Secure by Design (SbD) alerts, encouraging software manufacturers to build products with proactive security measures to mitigate vulnerabilities, particularly in web management interfaces. The new alerts focus on vendor practices that can globally reduce harm, emphasizing the need for default security features, customer security … Read more

Consumer Software Security Assessment: Should We Follow NHTSA’s Lead?

November 28, 2023 at 04:14AM The text discusses the need for a consumer software security organization similar to the US National Highway Traffic Safety Administration. It highlights the lack of safety standards for software and the need to protect consumers from digital crimes. The text suggests the creation of safety ratings for software and devices … Read more

27 Malicious PyPI Packages with Thousands of Downloads Found Targeting IT Experts

November 17, 2023 at 06:00AM An unidentified threat actor has been uploading malware-laden fake Python libraries to the PyPI repository for the past six months. Disguised as legitimate packages, these 27 libraries have attracted thousands of downloads from various countries. The attacker used steganography to hide malicious payloads within innocent-looking image files. The packages included … Read more

Consumer Software Security Assessment: Should We Follow NHTSA’s Lead?

November 16, 2023 at 01:04PM A similar organization to the US National Highway Traffic Safety Administration (NHTSA) should be created to ensure consumer software security. Software should meet basic security and safety standards and be easily understood and implemented by consumers. Safety features should be in place by default, but users need to actively use … Read more

48 Malicious npm Packages Found Deploying Reverse Shells on Developer Systems

November 3, 2023 at 09:42AM 48 malicious npm packages containing obfuscated JavaScript have been discovered in the npm repository. These packages, uploaded by an npm user named hktalent, can deploy a reverse shell on compromised systems. The attack is triggered post-installation, establishing a reverse shell to rsh.51pwn[.]com. This highlights the increasing interest of threat actors … Read more

New CVSS 4.0 vulnerability severity rating standard released

November 1, 2023 at 03:32PM FIRST has released CVSS v4.0, the latest version of its Common Vulnerability Scoring System standard after eight years. CVSS provides a framework for assessing the severity of software security vulnerabilities, helping prioritize responses to security threats. The new version offers finer granularity, removes scoring ambiguity, simplifies metrics, and adds supplemental … Read more

Supply Chain Startup Chainguard Scores $61 Million Series B

November 1, 2023 at 11:46AM Chainguard, a supply chain security startup founded by former Google engineers, has secured $61 million in Series B financing led by Spark Capital. This brings their total venture capital investments to $116 million. Their flagship product, Chainguard Images, has gained traction among Fortune 500 companies and technology providers. Chainguard aims … Read more

Survey: AppSec Maturity Hindered by Staffing, Budgets, Vulnerabilities

October 31, 2023 at 01:01PM A recent report from the Purple Book Community highlights the challenges faced by companies in achieving application security (AppSec) maturity. These challenges include a shortage of AppSec engineers, slow vulnerability remediation, and the increasing reliance on cloud infrastructure. Insufficient funding is also identified as a major obstacle. The report emphasizes … Read more

Malicious NuGet Packages Caught Distributing SeroXen RAT Malware

October 31, 2023 at 08:18AM Malicious packages have been discovered on the NuGet package manager, deployed using a lesser-known method. The campaign, ongoing since August 2023, involves rogue packages delivering the SeroXen RAT remote access trojan. The threat actors behind the campaign are persistent, continuously publishing new malicious packages. The packages imitate popular ones and … Read more

Security Patch Management Strengthens Ransomware Defense

October 25, 2023 at 03:33AM Effective security patch management is crucial for enterprises to strengthen their defense against ransomware. With a large number of applications to manage and frequent patches being released by software vendors, IT teams need a risk-based approach to prioritize patching. Factors like relevance to the organization’s IT ecosystem, exploitation in the … Read more