#exfiltration

[ follow ]
#supply-chain-attacks #github #vs-code-extensions #credential-rotation #credential-theft #cloud-security
Information security
fromSecurityWeek
1 week ago

GitHub Confirms Hack Impacting 3,800 Internal Repositories

About 3,800 GitHub internal repositories were exfiltrated after a poisoned VS Code extension compromised an employee workstation, prompting secret rotation and ongoing monitoring.
Information security
fromThe Hacker News
3 weeks ago

PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems

PCPJack steals credentials from exposed cloud and application services, exfiltrates data via attacker infrastructure, spreads worm-like, and aims for illicit revenue.
fromInfoWorld
6 months ago

North Korea's 'Job Test' trap upgrades to JSON malware dropboxes

The final payload (BeaverTail) showed previously seen capabilities, including "usage of Axioms as embedded HTTP client, enumeration and exfiltration of system information, searching browser profiles and extension directories for sensitive data, and searching for and exfiltrating Word documents, PDF files, screenshots, secret files, files containing environment variables, and other sensitive files such as the logged-in user's Keychain".
Information security
[ Load more ]