ScanForge Security Digest 2628-02
This week's security digest includes 0 actively exploited vulnerabilities (CISA KEV), 0 critical CVEs, and 0 high-severity CVEs. Review the details below and prioritize patching for any affected systems.
Security News
10The jscrambler npm package was compromised, and simply installing its 8.14.0 release runs an infostealer on yo
Cybersecurity researchers have disclosed details of sustained cyber espionage activity against several Pakistani law enf
Multiple campaigns are using ghost accounts to map GitHub organizations, including their repositories and members. The p
The Australian Cyber Security Centre (ACSC) issued an alert about a global exploitation campaign targeting vulnerable co
A PNG hiding a prompt injection could steal your repo's secrets, researchers demonstrate. The technique, dubbed 'Ghostco
Zimbra is urging customers to apply updates to address a critical security vulnerability impacting the Classic Web Clien
Six vulnerabilities in the widely used U-Boot bootloader have been discovered that could allow attackers to execute mali
In a rare combined cybersecurity/squid post, a twenty-nine-year-old squid proxy bug can leak HTTP requests. As usual, yo