MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
code
Recherche

One line of malicious npm code led to massive Postmark email heist

lundi 29 septembre 2025, 22:44 , par TheRegister
MCP plus open source plus typosquatting equals trouble
A fake npm package posing as Postmark's MCP (Model Context Protocol) server silently stole potentially thousands of emails a day by adding a single line of code that secretly copied outgoing messages to an attacker-controlled address.…
Lire la suite sur TheRegister
https://go.theregister.com/feed/www.theregister.com/2025/09/29/postmark_mcp_server_code_hijacked/

Voir aussi

code New Claude Model Runs 30-Hour Marathon To Create 11,000-Line Slack Clone Slashdot29 Sep
npm Fuite massive de données pour Top 4 Fans après une cyberattaque Zataz29 Sep
line Arnaque à l’Assurance maladie : une nouvelle escroquerie se propage en France, ne scannez pas ce QR code 01net29 Sep
mcp Escalation in Akira Campaign Targeting SonicWall VPNs, Deploying Ransomware, With Malicious Logins Slashdot27 Sep
plus What is infrastructure as code? Automating your infrastructure builds InfoWorld26 Sep
one Code Vein 2 sortira début 2026 GameKult25 Sep
heist One of TikTok’s network boffins says it causes ‘massive data wastage’ TheRegister23 Sep
email Web Codegen Scorer evaluates AI-generated web code InfoWorld23 Sep
malicious Massive Attack et 400 artistes déclarent la guerre à Spotify et boycottent Israël Génération-NT22 Sep
led L'ANTS dément la fuite massive de 13 millions de données personnelles Génération-NT22 Sep
massive The Precinct : l'anti-GTA reçoit la mise à jour massive gratuite Tow Truck Update GameKult18 Sep
postmark DeepSeek AI’s code bias sparks alarm over politicized AI outputs and enterprise risk ComputerWorld18 Sep
code DeepSeek Writes Less-Secure Code For Groups China Disfavors Slashdot18 Sep
npm Microsoft Favors Anthropic Over OpenAI For Visual Studio Code Slashdot17 Sep
line OpenAI's Teen Safety Features Will Walk a Thin Line Wired: Tech.16 Sep
mcp Gearbox CEO Randy Pitchford Tells Borderlands 4 Critics To 'Code Your Own Engine,' Calls It a Game For 'Premium Gamers' Slashdot16 Sep
plus New AI-powered code intelligence platform speeds up modernization efforts BetaNews16 Sep
one Qwen Code is good but not great InfoWorld16 Sep
heist ChatGPT: Why do most of your users ask for help writing - prose, not code? TheRegister16 Sep
email Down and out with Cerebras Code InfoWorld15 Sep
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Date Actuelle
mar. 30 sept. - 04:23 CEST