Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
Security Boulevard

Unpacking the Phishing Script Behind a Server-Orchestrated Deception

A cunning new phishing attack is bypassing Secure Email Gateways (SEGs) and evading perimeter defences. It uses a rare, sophisticated phishing script with random domain selection and dynamic ...
LinkedIn

Cybersecurity Vulnerabilities in PDF Files: Exploitation Techniques and Defenses

Portable Document Format (PDF) is a ubiquitous file format developed by Adobe and later standardized as ISO 32000. It is designed to present documents (text, images, graphics) in a fixed layout ...