Detecting and Blocking Malicious Packages in Public Registries

In this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They talk about:

• Somehow there are still more Ivanti and Fortinet exploits
• Volt Typhoon have been at it for years
• Starlink in Ukraine gets complicated
• Canadians hate poor Flipper
• Much, much more…

In this week’s sponsor interview Feross Aboukhadijeh from Socket joins the show to talk about the sheer volume of malicious packages being committed to code repositories and why older SCA tools aren’t well equipped to deal with them.

Show notes

• Microsoft Azure customers hit by phishing, account takeover attacks | Cybersecurity Dive
• Ivanti publishes urgent warning about new vulnerability
• How is Pulse Secure Formed
• Attackers hit more networking gear, this time a critical Fortinet CVE | Cybersecurity Dive
• End Of General Availability of the free vSphere Hypervisor (ESXi 7.x and 8.x) (2107518)
• Coker: ONCD is studying ‘liability regimes’ for software flaws
• Chinese hackers spent 5 years in US infrastructure, ready to attack
• CISA, FBI warn of China-linked hackers pre-positioning for ‘destructive cyberattacks against US critical infrastructure’
• Russia using Starlink
• Canada declares Flipper Zero public enemy No. 1 in car-theft crackdown | Ars Technica
• Health insurance data breach affects nearly half of France’s population, privacy regulator warns
• Hackers attack 25 Romanian hospitals
• Catalin on the Rhysider ransomware decrypter going public
• A password manager LastPass calls “fraudulent” booted from App Store | Ars Technica
• From Cybercrime Saul Goodman to the Russian GRU – Krebs on Security