THREATNOIR
Subscribe
Back to show
Red vs Blue Show

Malicious Postinstall Hooks Lurk in 700+ Repos

May 23, 2026 · 1:40

Researchers discovered malicious postinstall hooks in over 700 GitHub repositories across Node.js and PHP ecosystems, with attackers downloading hidden bin…

X

Watch next

Defender Zero-Days Exploited Before Patch Tuesday
1:40

Defender Zero-Days Exploited Before Patch Tuesday

May 22, 2026

SonicWall MFA Bypass: Patched but Still Wide Open
1:40

SonicWall MFA Bypass: Patched but Still Wide Open

May 21, 2026

47 Zero-Days Drop at Pwn2Own Berlin
1:40

47 Zero-Days Drop at Pwn2Own Berlin

May 20, 2026

SHub Reaper Spoofs Apple Updates to Steal Everything
1:40

SHub Reaper Spoofs Apple Updates to Steal Everything

May 19, 2026

Tycoon2FA Weaponizes Device-Code Phishing for M365
1:40

Tycoon2FA Weaponizes Device-Code Phishing for M365

May 18, 2026

16-Year-Old NGINX Flaw Now Has Public Exploit
1:40

16-Year-Old NGINX Flaw Now Has Public Exploit

May 17, 2026

WordPress Funnel Builder Skims Checkout Cards
1:40

WordPress Funnel Builder Skims Checkout Cards

May 16, 2026

Burst Statistics Plugin Auth Bypass Under Mass Exploitation
1:40

Burst Statistics Plugin Auth Bypass Under Mass Exploitation

May 15, 2026

Critical Exim Flaw Hands Attackers Remote Code Execution
1:40

Critical Exim Flaw Hands Attackers Remote Code Execution

May 14, 2026