The FBI and the US Cybersecurity and Infrastructure Security Agency (CISA) have warned of a malware campaign that targets Apache webservers and websites using the Laravel Web application framework. Known as “Androxgh0st”, the malware aims to steal credentials to access applications such as Amazon Web Services and Microsoft 365. Its intent is to access sensitive data or utilise the apps for malicious activity.
The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.
