If GitHub Can Be Compromised, So Can You
An experiment in running malware in developer tooling, finding gaps in visibility and security controls, and AI-powered tooling to address the issues
BLOG
Insights, research, and practical guidance to help you stay ahead of emerging security risks.
The Malware Was Already There
What if the malware was already on disk before the attack even started? We walk through a technique that abuses browser caching behaviour and Windows COM resolution order to achieve persistence in corporate environments.