Tom Abai, Author at Security Boulevard

Critical Backdoor Found in XZ Utils (CVE-2024-3094) Enables SSH Compromise

Tom Abai — Sun, 31 Mar 2024 11:04:37 +0000

The Mend.io research team detected more than 100 malicious packages targeting the most popular machine learning (ML) libraries from the PyPi registry.

The post Critical Backdoor Found in XZ Utils (CVE-2024-3094) Enables SSH Compromise appeared first on Mend.

The post Critical Backdoor Found in XZ Utils (CVE-2024-3094) Enables SSH Compromise appeared first on Security Boulevard.

Over 100 Malicious Packages Target Popular ML PyPi Libraries

Tom Abai — Thu, 28 Mar 2024 17:26:08 +0000

The Mend.io research team detected more than 100 malicious packages targeting the most popular machine learning (ML) libraries from the PyPi registry.

The post Over 100 Malicious Packages Target Popular ML PyPi Libraries appeared first on Mend.

The post Over 100 Malicious Packages Target Popular ML PyPi Libraries appeared first on Security Boulevard.

There’s a New Stealer Variant in Town, and It’s Using Electron to Stay Fully Undetected

Tom Abai — Thu, 10 Aug 2023 14:05:11 +0000

See the attack flow of this new info-stealer Mend.io detected and how it can stay undetected by abusing trusted development tools like Electron.

The post There’s a New Stealer Variant in Town, and It’s Using Electron to Stay Fully Undetected appeared first on Mend.

The post There’s a New Stealer Variant in Town, and It’s Using Electron to Stay Fully Undetected appeared first on Security Boulevard.