April 23, 2025

768 - Biblioteca do Ripple no npm é comprometida para roubo de chaves

7 minutes

Referências do Episódio

Ripple's xrpl.js npm Package Backdoored to Steal Private Keys
XRP supply chain attack: Official NPM package infected with crypto stealing backdoor
NFC Fraud Wave: Evolution of Ghost Tap on the Dark Web
Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows
Cookie-Bite: How Your Digital Crumbs Let Threat Actors Bypass MFA and Maintain Access to Cloud Environments
ConfusedComposer: A Privilege Escalation Vulnerability Impacting GCP Composer
Infostealer Malware FormBook Spread via Phishing Campaign – Part I
Russian organizations targeted by backdoor masquerading as secure networking software updates

Roteiro e apresentação: Carlos Cabral e Bianca Oliveira

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

...more

By Tempest Security Intelligence

April 23, 2025

7 minutes

Referências do Episódio

Ripple's xrpl.js npm Package Backdoored to Steal Private Keys
XRP supply chain attack: Official NPM package infected with crypto stealing backdoor
NFC Fraud Wave: Evolution of Ghost Tap on the Dark Web
Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows
Cookie-Bite: How Your Digital Crumbs Let Threat Actors Bypass MFA and Maintain Access to Cloud Environments
ConfusedComposer: A Privilege Escalation Vulnerability Impacting GCP Composer
Infostealer Malware FormBook Spread via Phishing Campaign – Part I
Russian organizations targeted by backdoor masquerading as secure networking software updates