ThreatsDay: $290M DeFi‑hack, npm‑chains, macOS LotL and SIM‑farms

Colleagues, attention on recent cybersecurity developments.
What happened:
- LayerZero links North Korean actors (TraderTraitor) to a $290M theft from KelpDAO via RPC compromise.
- VulnCheck records RCE exploitation in MajorDoMo; a zero‑credential RCE attack targets ActiveMQ.
- Malicious npm packages discovered carrying backdoors and data exfiltration; macOS attacks employ LotL via Finder/Spotlight.
- Infrawatch details ProxySmart SIM farms used for large‑scale fraud; IPI attacks against AI agents are increasing.
Why it matters: Most incidents stem from supply‑chain issues and excessive trust — patching, package verification and privilege restriction reduce risk.
What are you doing to protect yourselves?
#cybersecurity #supplychain #DeFi #infosec


Latest comments
No comments yet.