23 September 2022

Cyber security week in review: September 23, 2022

Cyber security week in review: September 23, 2022
The world in brief: Cryptomarket maker Wintermute robbed of $160M in a hack, old Python bug potentially affects 350,000 open-source projects, and more.

Latest Posts

Unpatched 15-year-old Python vulnerability puts at risk over 350,000 open-source projects

Unpatched 15-year-old Python vulnerability puts at risk over 350,000 open-source projects

The vulnerable Python tarfile module is found extensively in frameworks created by Netflix, AWS, Intel, Facebook, Google and other software.
22 September 2022
Malicious actors continue to abuse Google Tag Manager tool to install e-skimmers

Malicious actors continue to abuse Google Tag Manager tool to install e-skimmers

The researchers said they discovered three variants of malicious scripts hidden within GTM containers that function either as e-skimmers or as downloaders for installing e-skimmers.
21 September 2022
Record DDoS attack with 25.3 billion requests used HTTP/2 multiplexing

Record DDoS attack with 25.3 billion requests used HTTP/2 multiplexing

The attack lasted over four hours, which is notable, as only 10.5% of attacks last between one and six hours.
21 September 2022
American Airlines had waited two months to disclose a data breach

American Airlines had waited two months to disclose a data breach

The company said the hackers gained access to employee accounts via a phishing campaign.
21 September 2022