Загрузка...

👉 post install hook - disable it immediately !!

👉 post install hook - a very powerfull mechanism in npm ecosystem is proving to be extremely dangerous

👉 Attackers are leveraging it to install malware into systems

❓ The best example is - recent compromise of axios library, one of the most dependent on library in npm ecosystem

Видео 👉 post install hook - disable it immediately !! канала Become A Security Champion
Комментарии отсутствуют
Зарегистрируйтесь или войдите с
Информация о видео
26 мая 2026 г. 9:38:03
00:01:23
Become A Security Champion
Правообладателям
Жалоба на материал Недопустимый материал Нарушение авторских прав
Комментарии
Поделиться
Другие видео канала

Two most critical concepts at the heart of any Security Architecture.Two most critical concepts at the heart of any Security Architecture.

A Critical CVSS 9.8 CVE for MCP server of Nginx.A Critical CVSS 9.8 CVE for MCP server of Nginx.

Alert !! Another Supply Chain Attack. This time on LiteLLM python package hosted on pipyAlert !! Another Supply Chain Attack. This time on LiteLLM python package hosted on pipy

Supply Chain Attacks: Best practices developers should follow to remain safe against such attacks ?Supply Chain Attacks: Best practices developers should follow to remain safe against such attacks ?

Zero Click Attack - Indirect Prompt Injection At Its BestZero Click Attack - Indirect Prompt Injection At Its Best

👉 2 Days ....Time threat actors took to 𝗱𝗲𝗽𝗹𝗼𝘆 𝗮 𝘄𝗼𝗿𝗸𝗶𝗻𝗴 𝗲𝘅𝗽𝗹𝗼𝗶𝘁 for React2Shell (CVE-2025-55182).👉 2 Days ....Time threat actors took to 𝗱𝗲𝗽𝗹𝗼𝘆 𝗮 𝘄𝗼𝗿𝗸𝗶𝗻𝗴 𝗲𝘅𝗽𝗹𝗼𝗶𝘁 for React2Shell (CVE-2025-55182).

Open AI Security Incident Unfolded.Open AI Security Incident Unfolded.

👉 Are we running against time ?👉 Are we running against time ?

Can XSS be used to mount Denial Of Service Attack (DOS) ?Can XSS be used to mount Denial Of Service Attack (DOS) ?

Exploitability and Reachability - Two tools in your arsenal to prioritise vulnerability fixing.Exploitability and Reachability - Two tools in your arsenal to prioritise vulnerability fixing.

Its a high time Code Level Security Should be treted as First lass Citizen !!Its a high time Code Level Security Should be treted as First lass Citizen !!

Are you using AI to generate production grade Code ? You Need to listen to this.Are you using AI to generate production grade Code ? You Need to listen to this.

Is AI Generated Code Secure ?Is AI Generated Code Secure ?

Total Vulnerabilities Count for 2025. What is the lesson for us ?Total Vulnerabilities Count for 2025. What is the lesson for us ?

ReactToShell: Act Immediately !!ReactToShell: Act Immediately !!

Prompt Injection and Jail Break : What's the Difference ?Prompt Injection and Jail Break : What's the Difference ?

The fastest e-Crime break out time for attackers is ??CThe fastest e-Crime break out time for attackers is ??C

The different life cycle phases where LLM can be poisoned with Malicious Data ?The different life cycle phases where LLM can be poisoned with Malicious Data ?

👉 OWASP Top 10 Risk No 5 - Injection👉 OWASP Top 10 Risk No 5 - Injection

3 Vulnerabilities in MCP you need to be very carefull of.3 Vulnerabilities in MCP you need to be very carefull of.

Яндекс.Метрика
© 2008-2026 «Информационно-развлекательный портал города Верхняя Салда»
salda.ws@mail.ru salda_ws Контакты Карта портала Сообщить об ошибке Соглашения Пользовательское соглашение Соглашение о конфиденциальности Согласие на обработку персональных данных Информация для правообладателей Об использовании Cookies
Все заметки Новая заметка Страницу в заметки
Страницу в закладки Мои закладки
На информационно-развлекательном портале SALDA.WS применяются cookie-файлы. Нажимая кнопку Принять, вы подтверждаете свое согласие на их использование.
О CookiesНапомнить позжеПринять