The article highlights two primary threats: a self-spreading malware campaign targeting npm packages to compromise developer systems and a Cisco SD-WAN zero-day vulnerability that has been actively exploited since 2023. Specific technical details regarding CVSS scores, affected versions, fixed versions, and workarounds for these incidents are not provided in the source material.
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Identity verification systems are struggling with synthetic fraud Fake and expired IDs keep showing up in routine customer transactions, from alcohol purchases to credit card applications. The problem shows up most often in industries that depend on fast onboarding and remote transactions, where identity checks rely heavily on scanned documents and automated workflows. Enterprises are racing to secure agentic AI … More → The post Week in review: Self-spreading npm malware hits developers, Cisco SD-WAN 0-day exploited since 2023 appeared first on Help Net Security .