Meddler-in-the-Middle phishing attacks break MFA
Security researchers have discovered “meddler-in-the-middle” (MitM) phishing attacks that can break multi-factor authentication (MFA) controls.
2FA
GitHub fixes 2 npm registry vulnerabilities
GitHub has fixed two node package manager (npm) registry vulnerabilities, one of those could allow an attacker to publish new versions of an npm package without proper authorization.
Kobalos Linux malware targets high performance cluster computers
A complex Linux malware dubbed Kobalos is targeting high performance cluster (HPC) computers around the globe.
Germany Publishes New Broadband Router Security Guidelines
The German government Federal Office for Information Security published technical security guidelines for broadband routers commonly used in Small Office and Home Office (SOHO) environments. The new guideline provides recommendations to manufacturers on designing and implementing routing products with “adequate state-of-the -art security features.”
Hacker breaks into Reddit systems via SMS-based 2FA
Reddit, a popular social news aggregation and discussion website, suffered from a security breach between June 14 and June 18 of this year. The incident was discovered on June 19 and linked to weaknesses in SMS-based two-factor authentication (2FA).
Gentoo reveals hacking root cause of its GitHub repository
Gentoo provided a new security update that describes the impact and root cause of its recent GitHub Linux distribution repository hacking incident.