Cybernews

Checkmarx hit again, popular tools spreading credential-stealing malware

Checkmarx suffers a second supply chain attack in a month, resulting in hackers injecting credential-stealing malware into ...

New Checkmarx supply-chain breach affects KICS analysis tool

Hackers have compromised Docker images, VSCode and Open VSX extensions for the Checkmarx KICS analysis tool to harvest ...
The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...
InfoWorld

Offer customers passkeys by default, UK’s NCSC tells enterprises

Developers of enterprise apps and websites will need to get to grips with passkeys: The UK's National Cyber Security Center ...
InfoWorld

UK’s NCSC calls passkeys the default, says passwords are no longer fit for the purpose

Citing resistance to phishing and credential reuse, the agency recommends passkeys wherever supported and warns that ...