#hardcoded-credentials

[ follow ]
#supply-chain-attack #unencrypted-cloud-storage #ai-model-tampering #chrome-extension-malware
Information security
fromTechRepublic
4 months ago

Security Breaches Found in AI-Powered Repair Tool Wondershare RepairIt

Wondershare RepairIt stored user files unencrypted in cloud storage and hardcoded permissive access tokens, enabling attackers to tamper AI models and execute supply chain attacks.
Information security
fromTechzine Global
1 month ago

Malicious Chrome extensions disguise themselves as proxy services

Two Phantom Shuttle Chrome extensions route user traffic through attacker-controlled proxies to capture credentials, form data, session cookies, and API tokens.
[ Load more ]