#dns-exfiltration

[ follow ]
#npm-supply-chain #node-ipc #malware #ci-security #aws-security #ai-code-execution #sandbox-bypass
Node JS
fromThe Cyber Express
2 days ago

Node-ipc Npm Package Hit By Credential Stealer Attack

Malicious node-ipc npm releases used obfuscated code to fingerprint systems, steal files, encrypt data, and exfiltrate via DNS, with prior versions also compromised.
Information security
fromThe Hacker News
2 months ago

AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE

Amazon Bedrock AgentCore Code Interpreter's sandbox allows outbound DNS queries, enabling attackers to exfiltrate data and establish command-and-control channels despite network isolation configuration.
Information security
fromTechzine Global
3 months ago

New Windows backdoor emerges in ransomware attack

PDFSider is a stealthy Windows backdoor deployed via social engineering and DLL side-loading to provide persistent, encrypted access and data exfiltration over DNS.
[ Load more ]