Javascript

Interview: Godel Technologies, Digital Technology Leaders Awards finalist

Leadership

Interview: Godel Technologies, Digital Technology Leaders Awards finalist

"Godel champions the most important values - people, quality and empowerment."

clock 30 June 2023 • 4 min read
New guidance on software supply chain attacks released

Threats and Risks

New guidance on software supply chain attacks released

Linux Foundation's OpenSFF releases npm security guide while US agencies NSA and CISA advise on hardening the component supply chain

clock 02 September 2022 • 4 min read
TikTok's in-app browser code can track anything you type, researcher claims

Privacy

TikTok's in-app browser code can track anything you type, researcher claims

Injecting JavaScript code is comparable to installing a keylogger on third-party websites, Felix Krause says

clock 25 August 2022 • 3 min read
200 malicious packages targeting Azure developers removed by npm

Threats and Risks

200 malicious packages targeting Azure developers removed by npm

The attacker created dozens of malicious counterparts that had the same name as existing @azure scope packages

clock 24 March 2022 • 3 min read
Researchers warn of malicious typosquatting packages making their way into open source repositories

Threats and Risks

Researchers warn of malicious typosquatting packages making their way into open source repositories

Malicious typosquatting packages prey on naive users or developers who make a slight typographical error

clock 04 March 2022 • 2 min read
Threat actors exploit Microsoft and AWS services to distribute malware

Threats and Risks

Threat actors exploit Microsoft and AWS services to distribute malware

The tactic helps save time and money when it comes to setting up attack infrastructure, as well as making it easier for attackers to hide their tracks

clock 13 January 2022 • 2 min read
JavaScript NPM library with 3 million weekly downloads exposed apps to hijacking

Threats and Risks

JavaScript NPM library with 3 million weekly downloads exposed apps to hijacking

Pac-Resolver library versions older than 5.0.0 are vulnerable

clock 03 September 2021 • 2 min read

Threats and Risks

Google releases urgent Chrome update to address zero-day bug under active attack

Thirteen other bugs were also fixed in the new update

clock 10 June 2021 • 2 min read

Security

Over half of organisations still lack BYOD policy

Nearly four in five organisations do not have a dedicated team to provide IT security services

clock 06 November 2020 • 2 min read

Threats and Risks

HTML smuggling technique behind 'Duri' campaign to deliver malware, researchers warn

The attack can evade network security solutions, including firewalls, legacy proxies and sandboxes

clock 19 August 2020 • 2 min read