TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

By rooter

Cybersecurity researchers have discovered five malicious Rust crates that masquerade as time-related utilities to transmit .env file data to the threat actors.
The Rust packages, published to crates.io, are listed below –

chrono_anchor
dnp3times
time_calibrator
time_calibrators
time-sync

The crates, per Socket, impersonate timeapi.io and were published between late February and early March

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

12+ Best VPN For Online Surveys [Tested, Reviewed, And Ranked]

rooter
Cyber Security

McAfee Vs Norton – Which Is Better?

rooter
Cyber Security

Virtual Shield VPN Review: Is Virtual Shield VPN Safe? [+Best Alternatives]

rooter

Leave a Reply

You Missed

News

Former Climate Hero Wins Permit for 41 Gas Turbines in Mississippi

News

Anthropic is launching a new think tank amid Pentagon blacklist fight

Cyber Security

12+ Best VPN For Online Surveys [Tested, Reviewed, And Ranked]

Cyber Security

McAfee Vs Norton – Which Is Better?