NewsNukem

Cloud Security

Cloud platform vulnerabilities, misconfigurations, and incidents

3 articles

GlassWorm Malware Campaign Hijacks GitHub Tokens to Poison Python Repositories
cloud security
analysis

GlassWorm Malware Campaign Hijacks GitHub Tokens to Poison Python Repositories

GlassWorm malware campaign exploits stolen GitHub tokens to inject malicious code into Python repositories, targeting Django, ML projects, and PyPI packages.

5 min readMar 18
UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours
cloud security
analysis

UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

UNC6426 leveraged nx npm supply chain compromise to achieve complete AWS admin access within 72 hours, demonstrating devastating speed of modern cyberattacks.

5 min readMar 18
AI-Powered Attackers Outpace Patching: Bug Exploitation Now Top Google Cloud Attack Vector
cloud security
analysis

AI-Powered Attackers Outpace Patching: Bug Exploitation Now Top Google Cloud Attack Vector

AI empowers attackers to exploit cloud vulnerabilities faster than patching cycles, making bug exploitation the top Google Cloud attack vector, surpassing credential theft.

6 min readMar 18