From sourcesmethods.com
Sources & Methods Newsletter #20 - November 2024
0 1
📁 Sources OSSF Malicious Package Registry - the Securing Critical Projects Working Group of the Open Source Security Foundation (OpenSSF) maintains a collection of reports of malicious packages identified in open source repositories in Open Source Vulnerability (OSV) format. 📰...
on Sat, 11AM
From sourcesmethods.com
Backdoor Discovered in xz/liblzma Compression Library
0 1
A sophisticated backdoor was uncovered in recent versions of the widely-used xz/liblzma compression library, potentially compromising any Linux system using certain distributions' OpenSSH builds. The malicious code was introduced through a subtle build system compromise by a trusted...
on Mar 30
From sourcesmethods.com
Sources & Methods Newsletter #16 - January 2024
0 0
Happy New Year! I hope your holidays were restful and you're ready to get back to it. At the risk of sounding cheesy, we know the adversaries are, so beat them to the punch. Good luck, Matthew Conway (@mattreduce) 📁 Sources Unprotect Project - Actively maintained knowledge base for evasion and
on Jan 30
From sourcesmethods.com
Sources & Methods Newsletter #15 - December 2023
0 0
I hope everyone had a great year—it was for Sources & Methods: * Moved the newsletter to Ghost.io to support a full site and blog ✨ * Grew subscribers by 243% year over year 📈 * Introduced richer content including video embeds 🎬 * Shared my process: How I Make Sources & Methods Newsletter...
on Dec 23
From sourcesmethods.com
0 0
Learn about the threat of free Adversary-in-the-Middle (AiTM) phishing proxy Evilginx and how to mitigate it.
on Dec 15
From sourcesmethods.com
Sources & Methods Newsletter #14 - November 2023
0 0
Have questions or suggestions? Send them my way at sources.methods@protonmail.com. Thanks for reading, Matthew Conway (@mattreduce) 📁 Sources Breach Report Collection - A collection public breach reports from companies that shared the TTPs they observed. 📰 Information Mandiant - The CTI...
on Nov 22