Aclu.org

How Malicious Software Updates Endanger Everyone

Notwithstanding the security risks, government agents may see malicious software updates as a means for surveillance. The term malicious software, or malware, refers to software code designed to be ...

Microsoft warns about fake Java updates that force you to download malicious software

Microsoft would like to remind users about cyber criminals who attempt to take advantage of users who are aware of Java security alerts by creating fake virus alerts that force you to download ...
SiliconANGLE

Fortinet identifies thousands of malicious software packages exploiting open-source repositories

A new report out today from Fortinet Inc.’s FortiGuard Labs highlights a growing wave of malicious software packages exploiting system vulnerabilities. Based on data collected since November 2024, the ...
Dark Reading

China's Evasive Panda Attacks ISP to Send Malicious Software Updates

Researchers have found that a China-linked advanced persistent threat (APT) group compromised an Internet service provider (ISP) to exploit software vendor update mechanisms using DNS poisoning. The ...
Krebs on Security

Using Google Search to Find Software Can Be Risky

Google continues to struggle with cybercriminals running malicious ads on its search platform to trick people into downloading booby-trapped copies of popular free software applications. The malicious ...
Dark Reading

Veracode Buys Package Analysis Technology From Phylum

Application security company Veracode has acquired malicious package analysis, detection, and mitigation technology from software supply chain security startup Phylum, along with some staff who worked ...