Npm timing attack, legit software spreading malware, Mango Markets hacked for $100 million

Npm timing attack could impact supply chain

Legit software used to spread malicious WhatsApp mod

Mango Markets hit by $100 million hack

Thanks to today’s episode sponsor, Noname Security

Are you sure your APIs are secure? Noname Security discovers all the APIs running on your network and analyzes them to spot design flaws, misconfigurations, and vulnerabilities. You can even catalog sensitive data and quickly see how many APIs are able to access credit card data, phone numbers, SSNs, and other sensitive PII data. Learn more at nonamesecurity.com/posture-management