Serverless Phishing Kit on GitHub Targets Mexican Banks
GitBait phishing kit abuses GitHub Pages and the SheetBest API to steal Mexican banking credentials
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
GitBait phishing kit abuses GitHub Pages and the SheetBest API to steal Mexican banking credentials
Aikido Security has discovered at least 15 IDE plugins on the JetBrains Marketplace
Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX
A novel skimming attack has been observed by Jscramber, using the Stripe API to steal payment information by injecting malicious scripts into pages
A threat actor claimed to get hold of an exposed GitLab configuration file containing Zendesk API access tokens
Harvesting API keys and secrets from AWS SES, Microsoft Office 365 and other services