Software and code repositories are a great resource for web and software developers – they save time, client’s money and get quality modules for their projects. GitHub is one of the most popular – with many major software players using it to develop their code and other developers, large and …
GitHub – probably one of the biggest targets for threat actors
GitHub is one of the most popular software repositories so it stands to reason that threat actors will always be searching for ways in as infecting code at source that is then reused in multiple applications is a cost-effective way to run a cyber attack. GitHub has just patched a …
Continue reading “GitHub – probably one of the biggest targets for threat actors”
Supply Chain slip up… Something like this could easily happen to you…
It is actually a serious cyber security incident, with many questions for Toyota to answer. An outsourced developer left crucial security information, that could have exposed hundreds of thousands of customer records on a public facing repo on GitHub. This was done in 2017 and only discovered in September 2022, …
Continue reading “Supply Chain slip up… Something like this could easily happen to you…”
Log4shell – the vulnerability that is inside many software packages – just ask VMware – is here to stay
The SolarWinds attack, where the threat actors got inside SolarWinds’ systems and added their malicious code to a legitimate software update, so having SolarWinds distribute this malware to many of its high and low profile customers around the world, seems a long time ago now. But at least in this …
This time there is more of a security issue with iOS rather than Android
Usually when I am discussing smartphone app security, Apple iOS has an advantage over Android apps, because of it’s curated App store that stops (most) of the security issues from getting through to the end user’s devices. Now researchers have discovered Amazon Web Service credentials hard coded, by careless developers …
Continue reading “This time there is more of a security issue with iOS rather than Android”