Skip to content
The Nexus
DossierENTITY

BufferZoneCorp

Coverage of BufferZoneCorp in the Nexus archive.

Earliest in view: May 1 · 09:43 UTCMost recent: May 1 · 09:43 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYMay 1 · 09:43 UTCTHE HACKER NEWS
    Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft

    A new software supply chain attack campaign uses sleeper packages to push malicious payloads, enabling credential theft, GitHub Actions tampering, and SSH persistence. The attack is attributed to the GitHub account 'BufferZoneCorp,' which published malicious Ruby gems and Go modules.

BufferZoneCorp · Dossier · The Nexus