31 分鐘
CROC News: Malicious Repos, Bandwidth Theft, & NVD or NoVD? Crying Out Cloud
-
- 科技
🎙️ What is a better way to stay updated on cloud security than a NEW Crying Out Cloud episode!
Join Eden Naftali and Amitai Cohen as they explore what is new and 🔥:
👾 Open-source repos flooded by malicious code.
💻 What is to become of the National Vulnerability Database?
⛓️ Proof of bandwidth cryptojacking
🛠️ Critical vulnerabilities discovered in popular CI/CD tool
Links:
https://apiiro.com/blog/malicious-code-campaign-github-repo-confusion-attack/
https://github.blog/2024-02-29-keeping-secrets-out-of-public-repositories/
https://research.openanalysis.net/github/lua/2024/03/03/lua-malware.html
https://resilientcyber.substack.com/p/death-knell-of-the-nvd
https://sysdig.com/blog/cloud-threats-deploying-crypto-cdn/
🎙️ What is a better way to stay updated on cloud security than a NEW Crying Out Cloud episode!
Join Eden Naftali and Amitai Cohen as they explore what is new and 🔥:
👾 Open-source repos flooded by malicious code.
💻 What is to become of the National Vulnerability Database?
⛓️ Proof of bandwidth cryptojacking
🛠️ Critical vulnerabilities discovered in popular CI/CD tool
Links:
https://apiiro.com/blog/malicious-code-campaign-github-repo-confusion-attack/
https://github.blog/2024-02-29-keeping-secrets-out-of-public-repositories/
https://research.openanalysis.net/github/lua/2024/03/03/lua-malware.html
https://resilientcyber.substack.com/p/death-knell-of-the-nvd
https://sysdig.com/blog/cloud-threats-deploying-crypto-cdn/
31 分鐘