• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
Mobile menu toggle
  • Blog on X
  • Blog on Youtube
  • RSS feed X

Decipher Logo Home

  • Articles
  • Video
  • AI
  • General
  • Intrusions
  • Law Enforcement
  • Open Source Software Security
  • Podcast
  • Supply Chain
  • Vulnerabilities
  • All Topics
  • Home
  • Articles
  • Video
  • Blog on X
  • Blog on Youtube
  • RSS feed X

Archives for September 2025

All topics


Articles


23 Posts

New Automated npm Attack Campaign Targets Dozens of Packages

The campaign does not appear to be connected to the previous npm phishing attacks, but it does seem to be related to a rash of GitHub and npm token and secret thefts from the end of August.

By Dennis Fisher

September 16, 2025 | 3 min read

AIData breach

Deciphering Hackers

On the 30th anniversary of the release of Hackers, we are resurfacing this episode of our podcast from 2021 in which Zoe Lindsey and Pete Baker joined Dennis Fisher to talk about the cultural influence of the movie

By Dennis Fisher

September 15, 2025 | 1 min read

HackersPodcast

NPM Package Compromises, Sen. Wyden’s Ransomware Letter, and Apple’s Memory Safety Advance

Dennis and Lindsey discuss the targeted compromises of NPM packages (1:00) and the pointed letter that Sen. Ron Wyden sent to the FTC chairman asking for Microsoft to be held liable for the Ascension ransomware attack last year (11:45) before finally touching on Apple’s new memory safety technology for new iPhones (20:43).

By Dennis Fisher

September 11, 2025 | 1 min read

MicrosoftRansomware

Senator Flags Microsoft’s Role in the Ascension Ransomware Hack

Sen. Ron Wyden (D-Ore.) wants the U.S. government to hold Microsoft responsible “for contributing to ransomware attacks against critical U.S. infrastructure” like Ascension. 

By Lindsey O'Donnell-Welch

September 16, 2025 | 3 min read

MicrosoftRansomware

US Indicts LockerGoga, MegaCortex, Nefilim Ransomware Admin

The Justice Department has charged a Ukrainian national who is behind ransomware attacks of at least 200 U.S. companies tied to LockerGoga, MegaCortex, and Nefilim. 

By Lindsey O'Donnell-Welch

September 10, 2025 | 3 min read

Ransomware

Attack Compromises Popular NPM Packages

The affected packages include Chalk and Debug, and one of the contributors to those packages said the compromise was the result of him clicking on a phishing email related to setting up 2FA on his account.

By Dennis Fisher

September 9, 2025 | 4 min read

Data breachOpen source
  • «
  • Page 1
  • Page 2
  • Page 3
  • Page 4
  • »

sidebar

  • Blog on X
  • Blog on Youtube
  • RSS feed X
Home
  • Term & Conditions
  • ©2025 Decipher
  • Articles
  • Video

Powered by
...
►
Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
None
►
Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
None
►
Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
None
►
Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
None
►
Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual cookies.
None
Powered by