KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
New York Magazine

The Best MasterClass Classes, According to People Who’ve Taken Them

At this point, you or someone you know has probably been targeted with an ad from MasterClass — the online learning platform that launched in 2015 and now has more than 85 classes led by famous ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

Microsoft Threat Intelligence has uncovered an active supply chain attack involving malicious npm packages registered under organizational scopes that mirror real internal corporate namespaces, ...