The botnet began in early 2025, targeting software developers across the open-source supply chain.
Related Articles
All CyberSecurityDive →
Why a secure enterprise browser should be on your security short list in 2025
The shift in how we work has brought efficiencies and operational enhancements, but it also added complexity, created new attack vectors, and exacerbated existing security…
How AI Agents can help AppSec teams keep up with AI-generated code vulnerabilities
While AppSec teams are stuck with legacy scanners and backlogs, developers and hackers have adopted AI tools to accelerate their respective objectives. Developers are deploying…
Mitre CVE program regains funding as renewal deal reached
The Cybersecurity and Infrastructure Security Agency said it reached an agreement to renew funding for a software vulnerability program that is used by the information…
Critical vulnerability in Fortinet FortiWeb is under exploitation
Researchers warn that a critical vulnerability in Fortinet FortiWeb is under active exploitation, amid criticism that the company issued a silent patch for the flaw…
Renault Group confirms certain UK customer data stolen in third-party breach
Renault Group said certain U.K. customer data was stolen in a cyberattack targeting one of its data processing providers. The France-based automaker said the data…
Threat actors target SolarWinds Web Help Desk flaw
Security researchers warn that multiple enterprise customers have been compromised in connection with a critical flaw in SolarWinds Web Help Desk. Huntress Labs said that…