by Fortify Security Team | Oct 23, 2021 | Security Advisories
A vulnerability has been discovered in the NPM package ua-parser-js that could allow for remote code execution upon installation of the affected versions. NPM is the default package manager for the Javascript runtime environment Node.js and ua-parser-js is a popular...
by Fortify Security Team | Jul 21, 2021 | Industry News
Title: Groundhog Day: Npm Package Caught Stealing Browser Passwords Date Published: July 21, 2021 https://blog.secure.software/groundhog-day-npm-package-caught-stealing-browser-passwords Excerpt: “It isn’t malicious by itself, but it can be when put into the malicious...
by Fortify Security Team | Jun 24, 2021 | Industry News
Title: How Cyber Sleuths Cracked an ATM Shimmer Gang Date Published: June 23, 2021 https://krebsonsecurity.com/2021/06/how-cyber-sleuths-cracked-an-atm-shimmer-gang/ Excerpt: “Dant and other investigators looking into the shimmers didn’t know at the time how the...
by Fortify Security Team | Apr 14, 2021 | Industry News
Title: Microsoft Has Busy April Patch Tuesday with Zero-Days, Exchange Fixes Date Published: April 14, 2021 Microsoft Has Busy April Patch Tuesday with Zero-Days, Exchange Fixes Excerpt: “In all, Microsoft released patches for 110 security holes, 19 classified...
by Fortify Security Team | Mar 2, 2021 | Industry News
Title: Multi-Payload Gootloader Platform Stealthily Delivers Malware and Ransomware Date Published: March 2, 2021 Multi-payload Gootloader platform stealthily delivers malware and ransomware Excerpt: “The delivery method for the six-year-old Gootkit financial...
