Mastodawn

North Korea Targets Developers with 250 Fake Job Offers in Credential Heist

In a sneaky credential heist, hackers sent over 250 fake job offers to developers at nearly 100 US organizations, disguising phishing attempts as recruitment messages. The six-week scam targeted professionals in tech, education, and finance.

https://osintsights.com/north-korea-targets-developers-with-250-fake-job-offers-in-credential-heist?utm_source=mastodon&utm_medium=social

#CredentialHeist #Phishing #NorthKorea #Unkdeaddrop #NationState

North Korea Targets Developers with 250 Fake Job Offers in Credential Heist

Learn how North Korea targeted developers with 250 fake job offers in a credential heist phishing campaign and protect your organization now with expert insights.

OSINTSights

Analyst207 Apr 30

PyTorch Lightning Targeted in PyPI Supply Chain Credential Heist

Malicious actors have struck PyTorch Lightning with a supply chain attack, publishing two tainted package versions that automatically steal credentials when imported. The attack involves a sneaky _runtime directory with a downloader and obfuscated JavaScript payload.

https://osintsights.com/pytorch-lightning-targeted-in-pypi-supply-chain-credential-heist?utm_source=mastodon&utm_medium=social

#PytorchLightning #SupplyChainAttack #Pypi #CredentialHeist #EmergingThreats

PyTorch Lightning Targeted in PyPI Supply Chain Credential Heist

PyTorch Lightning hit by malicious PyPI packages stealing credentials learn how to protect your supply chain now from credential heists using secure package management practices today.

OSINTSights