Attack Against a Major Open-Source Library was Social Engineering

in #software3 days ago


Details emerge on how Axios was infected with a Remote Access Trojan in March, undermining the security in one of the most popular JavaScript libraries that has 100 million downloads weekly. The attack path was a customized social engineering attack against one of the lead maintainers of Axios, impersonating a founder of a respected company.

AI tools are allowing attackers to create likenesses, generate authentic looking webpages, social profiles, and accounts on sharing tools to convince victims and compel them to undermine their own security.

Every executive, developer, employee, and contractor must become savvier at detecting these evolving types of threats. It only gets tougher as AI makes social engineering threats more powerful!

Full post-mortem, provided by the duped maintainer, is available here: https://github.com/axios/axios/issues/10636

#development #cybersecurity #artificial #intelligence
3 days ago in #software by
$6.82
  • Pending payout amount: $6.82
  • Breakdown:
        0.00 SBD,
        58.76 STEEM,
        58.76 SP
  • Payout in 4 days
16 votes
Reply 0

Coin Marketplace

STEEM 0.06
TRX 0.32
JST 0.065
BTC 71068.09
ETH 2182.14
USDT 1.00
SBD 0.50