06 Oct 2023
By Mary

InfoSec News Nuggets 10/06/2023

Hundreds of malicious Python packages found stealing sensitive data A malicious campaign that researchers observed growing more complex over the past half year, has been planting on open-source platforms hundreds of info-stealing packages that counted about 75,000 downloads. The campaign has been monitored since early April by analysts at Checkmarx's Supply Chain Security team, who discovered 272 packages with code for stealing sensitive data from targeted systems. The attack has evolved significantly since it was…
Read More
20 Jan 2022
By Mary

InfoSec News Nuggets 01/20/2022

NSO Group Spyware Reportedly Used by Israeli Police Force Spyware from controversial Israeli software firm NSO Group was reportedly used by the nation's civilian police force, according to a new report from an Israeli business publication, Calcalist. The new findings allege that the Israeli police conducted warrantless phone taps on Israeli politicians and activists, among others. According to the report, NSO Group, which was sanctioned by the U.S. Department of Commerce in November 2021, provided its flagship spyware…
Read More
27 May 2020
By Mary

InfoSec News Nuggets 5/27/2020

Roughly half the Twitter accounts pushing to 'reopen America' are bots, researchers found There's been a surge in bot activity in the past month in online discussions about reopening America from COVID-19 shutdowns, researchers at Carnegie Mellon University said this week. The researchers analyzed over 200 million tweets discussing COVID-19 and found that roughly half the accounts were likely bots. They identified the bots by looking for accounts that tweeted more frequently than humanly possible…
Read More