Cybersecurity Today NPM Attack Leave Hackers Empty Handed: Cybersecurity Today with David Shipley
Sep 15, 2025
Recent discussions reveal a massive NPM attack that exposed critical vulnerabilities in the software supply chain, yet hackers came away with little. A new phishing service, Void Proxy, poses a sophisticated threat to major accounts on Microsoft and Google. The fallout from cyber attacks on companies like Jaguar Land Rover highlights severe impacts on supply chains and leadership changes at businesses like Marks & Spencer. The conversation emphasizes the urgent need for robust cybersecurity measures to combat these evolving threats.
AI Snips
Chapters
Transcript
Episode notes
NPM Maintainer Phishing That Rippled Fast
- A single compromised NPM maintainer pushed malicious updates to widely used packages that saw billions of downloads weekly.
- The attack reached 10% of cloud environments in two hours but only netted attackers about $1,000 while causing large cleanup costs.
Use Multi-Layered Defenses Against Phishing
- Do layer defenses: people, process, culture, and multiple technologies to defend against phishing-as-a-service like Void Proxy.
- Do not assume any single vendor or MFA method is phishing-proof or phishing-resistant.
Session Cookies Are The Biggest Risk
- Void Proxy uses adversary-in-the-middle tactics to capture credentials, MFA codes, and session cookies in real time.
- Captured session cookies let attackers access accounts without MFA until tokens expire, making the attack highly dangerous.