Over 100K+ Sites Hit by Polyfill.io Supply Chain Attack
E-Commerce security firm Sansec unveiled a new supply chain attack affecting the Polyfill JS service when accessed through a number of CDNs hosting it. According to Sansec, over 100K sites were hit. T
Most Commercial Code Contains High-Risk Open Source Bugs - RedPacket Security
Three-quarters (74%) of commercial codebases contain open source components featuring “high-risk” vulnerabilities, according to a new study from Synopsys.
78% of CISOs Concerned About AppSec Manageability - RedPacket Security
A substantial 78% of CISOs have expressed concerns about the current unmanageability of application security (AppSec) attack surfaces, emphasizing the need
Upstream Supply Chain Attacks Triple in a Year - RedPacket Security
Security experts have warned of surging cyber risk in open source ecosystems, having detected three times more malicious packages in 2023 than last year.
Python Package Index Targeted Again By VMConnect - RedPacket Security
Cybersecurity experts at ReversingLabs have unveiled a concerning continuation of the infamous VMConnect campaign.
Hacker News
RedPacket Security