Users on GitHub are being infected with infostealer malware from a misleading proof-of-concept (PoC) exploit for CVE-2024-49113, also known as LDAPNightmare. Thought to be from SafeBreach Labs’ legitimate PoC, the malicious repository uses a PowerShell script to exfiltrate sensitive data. Cybersecurity firm Trend Micro urges users to verify repositories’ authenticity and rely on trusted cybersecurity companies and researchers.

NZ halts data, digital jobs cuts and more briefs
New Zealand’s Te Whatu Ora Health has halted restructuring plans that included axing data and digital jobs, following a legal complaint by the Public Service