At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and publishes those secrets on GitHub, …
Category:
Safety & Security
Safety & Security
Mustang Panda Deploys SnakeDisk USB Worm to Deliver Yokai Backdoor on Thailand IPs
by David Walker
Sep 15, 2025Ravie LakshmananMalware / Network Security The China-aligned threat actor known as Mustang Panda has been observed using an updated version of a backdoor called TONESHELL and a previously …
In oil and gas, safety isn’t just important, it’s mission-critical. From offshore rigs to refineries and field operations, teams face high-risk environments where compliance, environmental stewardship, and worker protection must …
There are several ways to write about Safe Work Australia’s recent Research Summit. This is the first article and will discuss a couple of features of the …
Safety & Security
How Pixel and Android are bringing a new level of trust to your images with C2PA Content Credentials
by David Walker
Posted by Eric Lynch, Senior Product Manager, Android Security, and Sherif Hanna, Group Product Manager, Google C2PA Core At Made by Google 2025, we announced that the new Google Pixel …
Safety & Security
VoidProxy phishing-as-a-service operation steals Microsoft, Google login credentials
by David Walker
“By offering this sophisticated PhaaS, VoidProxy lowers the technical barrier for a wide range of threat actors to execute AitM phishing attacks. Accounts compromised using PhaaS platforms facilitate numerous malicious …
Safety & Security
Bulletproof Host Stark Industries Evades EU Sanctions – Krebs on Security
by David Walker
In May 2025, the European Union levied financial sanctions on the owners of Stark Industries Solutions Ltd., a bulletproof hosting provider that materialized two weeks before Russia invaded Ukraine and quickly …
Safety & Security
Google Pixel 10 Adds C2PA Support to Verify AI-Generated Media Authenticity
by David Walker
Sep 11, 2025Ravie LakshmananArtificial Intelligence / Mobile Security Google on Tuesday announced that its new Google Pixel 10 phones support the Coalition for Content Provenance and Authenticity (C2PA) standard out …
When organizations search for the best EHS software, they’re not just looking for a digital tool—they’re looking for a solution that protects employees, streamlines compliance, reduces risk, and drives operational …
In this short 6-minute audio episode, I unpack the troubling case of Cleanaway Waste Management’s CEO bonus reduction following three worker deaths and challenge the notion that …