supply chain attacks

Developers Beware: Slopsquatting & Vibe Coding Can Increase Risk of AI-Powered Attacks

Posted on April 16, 2025April 17, 2025 by Admin

Security researchers and developers are raising alarms over “slopsquatting,” a new form of supply chain attack that leverages AI-generated misinformation commonly known as hallucinations. As developers increasingly rely on coding tools like GitHub Copilot, ChatGPT, and DeepSeek, attackers are exploiting AI’s tendency to invent software packages, tricking users into downloading malicious content. What is slopsquatting? The term slopsquatting was originally coined by Seth Larson, a developer with the Python Software Foundation, and later popularized by…

StormBamboo Compromises ISP to Spread Malware via Updates

Posted on August 9, 2024August 9, 2024 by Admin

New research from cybersecurity company Volexity revealed details about a highly sophisticated attack deployed by a Chinese-speaking cyberespionage threat actor named StormBamboo. StormBamboo compromised an ISP to modify some DNS answers to queries from systems requesting legitimate software updates. Multiple software vendors were targeted. The altered responses led to malicious payloads served by StormBamboo in addition to the legitimate update files. The payloads targeted both macOS and Microsoft Windows operating systems. Who is StormBamboo? StormBamboo…

Sekoia: Latest in the Financial Sector Cyber Threat Landscape

Posted on November 22, 2023November 22, 2023 by Admin

A new report from French-based cybersecurity company Sekoia describes evolutions in the financial sector threat landscape. The sector is the most impacted by phishing worldwide and is increasingly targeted by QR code phishing. The financial industry also suffers from attacks on the software supply chain and stands among the most targeted sectors impacted by ransomware in 2023. And an increase in attacks on Android smartphones affects the sector, both for cybercrime and cyberespionage operations. Jump…

Kaspersky’s Advanced Persistent Threats Predictions for 2024

Posted on November 21, 2023November 21, 2023 by Admin

Kaspersky’s new report provides the company’s view on the advanced persistent threats landscape for 2024. Existing APT techniques will keep being used, and new ones will likely emerge, such as the increase in AI usage, hacktivism and targeting of smart home tech. New botnets and rootkits will also likely appear, and hacker-for-hire services might increase, as will supply chain attacks, which might be provided as a service on cybercriminals’ underground forums. Jump to: More exploitation…

supply chain attacks

Developers Beware: Slopsquatting & Vibe Coding Can Increase Risk of AI-Powered Attacks

StormBamboo Compromises ISP to Spread Malware via Updates

Sekoia: Latest in the Financial Sector Cyber Threat Landscape

Kaspersky’s Advanced Persistent Threats Predictions for 2024

VMWARE

Helping Public Sector Organisations Define Cloud Strategy

How to change the VLAN ID of the Service Console in ESX from the command line/console

Cisco UCS and Vmware Interfaces (Vnics) HA Design Considerations

Troubleshooting network and TCP/UDP port connectivity issues on ESX/ESXi(2020669)

vSphere Client Parameters

Configuration Templates

CUE Licenses

Trouble shooting Unity Express with Call Manager Integeration & Operational Issues

CME Configuration Example: SIP Trunks to Viatalk and VoIP.ms

SIP Phone registration – CME Configuration

CUE Voicemail + VPIM networking (CUE to unity)