Blog

04Sep 2024 by

Google Confirms CVE-2024-32896 Exploited in the Wild, Releases Android Security Patch

Actualités
Google has released its monthly security updates for the Android operating system to address a known security flaw that it said has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2024-32896 (CVSS score: 7.8), relates to a case of privilege escalation in the Android Framework component. According to the description of the bug in the NIST National
Read More
04Sep 2024 by

Hackers Hijack 22,000 Removed PyPI Packages, Spreading Malicious Code to Developers

Actualités
A new supply chain attack technique targeting the Python Package Index (PyPI) registry has been exploited in the wild in an attempt to infiltrate downstream organizations. It has been codenamed Revival Hijack by software supply chain security firm JFrog, which said the attack method could be used to hijack 22,000 existing PyPI packages and result in "hundreds of thousands" of malicious package
Read More