Sotwe logo Sotwe logo
DusticoSec's profile banner image
DusticoSec's profile image

Dustico

@DusticoSec

Open-source supply-chain security
US & Israel
Joined December 2020
16 Following
37 Followers
8 Posts
DusticoSec's profile image
Dustico @DusticoSec
In this blog post by our CEO Tzachi Zornstain, he explains itโ€™s difficult and time-consuming to validate the #identity of the #opensource contributor. #supplychainsecurity https://t.co/SH7elrBTp1
0
1
2
0
0
DusticoSec's profile image
Dustico @DusticoSec
Last month PHP source code repo was hacked. Luckily the backdoor was reverted. Are we sure this was a single incident? Check out our blogpost ๐Ÿ‘‡ https://t.co/tcMfGjZjWf
0
0
0
0
0
DusticoSec's profile image
Dustico @DusticoSec
Our automatic open-source analysis engine reported a spike in the past hours of malicious activity. Thousands of open-source packages, all sharing the same code are being published with random names by what seems like an ethical hacker. Check it out - https://t.co/ZTDs9CUq9b
DusticoSec's tweet photo. Our automatic open-source analysis engine reported a spike in the past hours of malicious activity. Thousands of open-source packages, all sharing the same code are being published with random names by what seems like an ethical hacker. Check it out - https://t.co/ZTDs9CUq9b https://t.co/Z7PVShQAe5
0
9
2
0
0
DusticoSec's profile image
Dustico @DusticoSec
Our research team came across a technique that allowed code to run on hundreds of servers worldwide without an installation. What we found is when a user only downloads a Python package, the code inside will automatically run on the developer's system. https://t.co/6BP8VMtud8
0
10
4
2
0

Who to follow

RedHuntLabs's profile image
RedHunt Labs | CTEM/ASM Verified account
@RedHuntLabs
Modern Threat Exposure Management for your organization. Get A Free Report: https://t.co/QJ6y0FdjG8 #CTEM #ASM #cybersecurity
T_8ase's profile image
hackeT
@T_8ase
Professional Threat Hunter & Data Visualization Developer. Expert of Cyber Security Practitoner (GSE#404)
CheckmarxZero's profile image
Checkmarx Zero Verified account
@CheckmarxZero
Checkmarx Zero Working to Keep the Open Source Ecosystem Safe https://t.co/3yB6kPHV9B
DusticoSec's profile image
Dustico @DusticoSec
During this weekend new hackers started copycatting this attack (https://t.co/l3xcXehGmn).
0
0
0
0
0
DusticoSec's profile image
Dustico @DusticoSec
Last week a novel open-source software supply-chain attack was discovered by @alxbrsn. During this weekend, hackers started copycatting this (link in comments) In order to detect if you are vulnerable, we have released โ€œDustiLockโ€ an open-source tool - https://t.co/qmpZXzmQeL
DusticoSec's tweet photo. Last week a novel open-source software supply-chain attack was discovered by @alxbrsn. During this weekend, hackers started copycatting this (link in comments) In order to detect if you are vulnerable, we have released โ€œDustiLockโ€ an open-source tool - https://t.co/qmpZXzmQeL https://t.co/tvpQMqmha4
3
2
2
0
0
DusticoSec's profile image
Dustico @DusticoSec
This technique was demonstrated to be effective against sensitive systems inside Microsoft, Apple, Netflix, and many others.
0
0
0
0
0
DusticoSec's profile image
Dustico @DusticoSec
In some cases, an attacker can publish a public package with a name of a private package as well as a higher version number. This will cause private artifact repositories to use the attackers' package during the build process.
0
0
0
0
0

Last Seen Users on Sotwe

hmadh99842's profile image
ุบูุฒูู„ูŽ
Seen from Egypt
Toix22xioT's profile image
toix22
Seen from Vietnam
mw92987299's profile image
ู…ูˆ
okansans_okan's profile image
okan
Seen from Turkey
MelayuxnxNakala's profile image
Melayuxnx Nakala
Seen from Indonesia
Gaydildolovers's profile image
Dildo Lover
Seen from Thailand
tablouchlalla's profile image
ุทุจู„ูˆุด
Seen from Algeria
Cetinkn4's profile image
ร‡etin
Seen from Turkey
OBEYDGJ's profile image
Divine Goddess Jessica
Abofheed221's profile image
ุฃุจูˆ ูู‡ูŠุฏ

Trends for you

1
Canada
Under 10K tweets
2
#OlandriaxBETAwards
Under 10K tweets
3
#TNASlammiversary
Under 10K tweets
4
Mystics
Under 10K tweets
5
Kasich
Under 10K tweets
6
Samira
Under 10K tweets
7
Mullin
Under 10K tweets
8
Triple OT
Under 10K tweets
9
Axios
Under 10K tweets
10
Carla Leite
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.6M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.2M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.7M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
110.5M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
107M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.6M followers
nasa's profile image
7
NASA Verified account
@nasa
92.2M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.9M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
87.6M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
81.4M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
73M followers
imvkohli's profile image
12
Virat Kohli Verified account
@imvkohli
69.8M followers
kimkardashian's profile image
13
Kim Kardashian Verified account
@kimkardashian
69.8M followers
youtube's profile image
14
YouTube Verified account
@youtube
68.7M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.9M followers
neymarjr's profile image
16
Neymar Jr Verified account
@neymarjr
62.5M followers
theellenshow's profile image
17
The Ellen Show
@theellenshow
62.4M followers
cnn's profile image
18
CNN Verified account
@cnn
61.9M followers
x's profile image
19
X Verified account
@x
60.8M followers
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60.7M followers