cognitive cybersecurity intelligence
GitHub has rolled out new controls for npm to improve the security of the software supply chain, giving maintainers the ability to explicitly approve a release prior to the packages becoming publicly available for installation.
Called staged publishing, the feature is now generally available on npm. It mandates that a human maintainer pass a two-factor authentication (2FA) challenge to approve
Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.
Laravel Lang packages hijacked to deploy credential-stealing malware BleepingComputer
The Centers for Disease Control and Prevention (CDC) has expanded its enhanced Ebola screening to Hartsfield-Jackson Atlanta International Airport for passengers coming from Congo, Uganda
A new “coordinated” supply chain attack campaign has impacted eight packages on Packagist including malicious code designed to run a Linux binary retrieved from a
Kash Patel’s merch site hacked to trick users into installing malware | Hacked site displayed a fake Cloudflare page | Inshorts Inshorts
