npm Blog Archive: Reported malicious module: getcookies
The npm blog archive reports on a malicious module named getcookies that masqueraded as a cookie parsing library but contained a backdoor, leading to the unpublishing of three packages and three versions of a fourth package from the npm Registry.
FEATURES
ALTERNATIVES
NSA's cybersecurity advisories and guidance on evolving threats and mitigations.
A customizable offensive security reporting solution for pentesters and red teamers to generate detailed reports of their findings and vulnerabilities.
Google's Security Blog provides the latest news and insights on security and safety on the Internet.
Weekly summary of cybersecurity news and exploits.
Mandos Way provides strategic cybersecurity insights, particularly in AI implementation and leadership.
Infosec Resources provides extensive cybersecurity training and certifications to boost cybersecurity skills and careers.
OWASP offers essential resources and community support to enhance application security.
Sysreptor offers a customizable reporting solution for offensive security assessments.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.