Users on GitHub are being infected with infostealer malware from a misleading proof-of-concept (PoC) exploit for CVE-2024-49113, also known as LDAPNightmare. Thought to be from SafeBreach Labs’ legitimate PoC, the malicious repository uses a PowerShell script to exfiltrate sensitive data. Cybersecurity firm Trend Micro urges users to verify repositories’ authenticity and rely on trusted cybersecurity companies and researchers.

Only 1% of malicious emails that reach inboxes deliver malware
In 2024, 99% of email threats to corporations were found to be social engineering or phishing attacks, as per Fortra. Most pre-delivery email defenses struggle