A vulnerability in the extension publishing mechanism of Open VSX could have allowed attackers to tamper with any repository.
The post Vulnerability Exposed All Open VSX Repositories to Takeover appeared first on SecurityWeek.
Microsoft 365 Targeted in New Phishing, Account Takeover Attacks
Threat actors are abusing Microsoft 365 infrastructure in a BEC campaign, and target its users in two brand impersonation campaigns.
The post Microsoft 365 Targeted in New Phishing, Account Takeover Attacks appeared first on SecurityWeek.
AWS Patches Vulnerabilities Potentially Allowing Account Takeovers
AWS has patched vulnerabilities in several products, including flaws that could have been exploited to take over accounts.
The post AWS Patches Vulnerabilities Potentially Allowing Account Takeovers appeared first on SecurityWeek.