supply chain attack

Cybersecurity Alert: Malicious Go Modules Found Overwriting Linux Disks

Cybercrime, News, Policy, Vulnerabilities

May 4, 2025

Cybersecurity researchers have identified three malicious Go modules that can overwrite Linux systems’ primary disks, rendering them unbootable. These modules pose a significant threat, especially amid increasing supply chain attacks targeting software packages.
New Malicious npm Packages Target Open-Source Systems with Sophisticated Attacks

Cybercrime, News, Research, Vulnerabilities

March 27, 2025

Cybersecurity researchers warn of two malicious npm packages, ethers-provider2 and ethers-providerz, designed to alter legitimate installations, providing attackers enhanced access to developer systems. The novel methods underscore the growing sophistication of software supply chain threats.