- Cyber Safety
- Posts
- 📦 Slopsquatting Is Real—AI Is Suggesting Malicious Packages to Devs
📦 Slopsquatting Is Real—AI Is Suggesting Malicious Packages to Devs
In partnership with
Qrator Labs has announced it successfully mitigated the largest DDoS attack of 2025, which peaked at an astounding 965 Gbps. Here are some key highlights:
• The attack targeted an online betting service, coinciding with NHL star Alexander Ovechkin tying Wayne Gretzky's goal record.
• It started at 11:15 a.m. and surged rapidly to peak levels, causing about 90 minutes of disruption.
• Multiple tactics were deployed, including:
- 214 Gbps IP flood
- 965 Gbps UDP flood
- 229 Gbps SYN flood
- 169 Gbps TCP flood
As major sporting events increasingly become targets, companies must enhance their defenses against these sophisticated attacks to protect their digital platforms.
Looking for unbiased, fact-based news? Join 1440 today.
Join over 4 million Americans who start their day with 1440 – your daily digest for unbiased, fact-centric news. From politics to sports, we cover it all by analyzing over 100 sources. Our concise, 5-minute read lands in your inbox each morning at no cost. Experience news without the noise; let 1440 help you make up your own mind. Sign up now and invite your friends and family to be part of the informed.
A recently disclosed vulnerability in SonicWall’s SMA100 devices, tracked as CVE-2021-20035, is now actively being exploited.
Initially rated at medium severity, the risk level has been upped to high, prompting the Cybersecurity and Infrastructure Security Agency (CISA) to add it to their known exploited vulnerabilities catalog. Key points include:
• Vulnerability exploitation allows remote code execution by threat actors.
• Discovered by researcher Wenxu Yin from Qihoo 360 Technology Co.
• Organizations must patch or discontinue usage by May 7 if they haven’t already.
As cybercriminals increasingly target edge devices like VPNs, users must remain vigilant to protect against potential threats. SonicWall has yet to comment on this troubling exploitation activity.
The rise of “slopsquatting” and “vibe coding” is paving the way for AI-enhanced cyberattacks.
These threats exploit AI’s tendency to generate fake software packages, leading developers to inadvertently install malicious code. Key takeaways from the article include:
• Slopsquatting: Attackers register non-existent software that AI tools mistakenly suggest.
• Hallucinations: Nearly 1 in 5 AI-suggested packages are fabricated, as shown in a recent study.
• Vibe Coding: A trend where developers trust AI outputs without verification heightens risks.
To safeguard your projects, experts recommend verifying package names, using security tools, and avoiding unverified AI commands. Stay vigilant—protection starts with you!
Apple has rolled out critical security updates to address two actively exploited iOS vulnerabilities, enhancing user protection against sophisticated targeted attacks. Key highlights include:
• CVE-2025-31200: A memory corruption flaw in the Core Audio framework, scoring 7.5 on the CVSS, which could allow code execution via malicious audio files.
• CVE-2025-31201: A vulnerability in the RPAC component with a CVSS score of 6.8, enabling attackers to bypass Pointer Authentication.
Apple recommends users update to the latest versions across devices, including iOS, iPadOS, and macOS, to mitigate risks effectively.
Since the beginning of the year, this is the fifth zero-day patched by Apple, underscoring their commitment to cybersecurity. Stay vigilant and keep your devices updated!
SquareX Reveals Groundbreaking Data Splicing Attacks at BSides SF: A Game-Changer for Cybersecurity!
SquareX is set to unveil groundbreaking data splicing attack techniques at BSides San Francisco, revealing a serious vulnerability in Data Loss Protection (DLP) systems that threatens millions. Here are the key highlights:
• Talk Title: "Data Splicing Attacks: Breaking Enterprise DLP from the Inside Out"
• Speakers: Jeswin Mathai and Audrey Adeline
• Release of Open-Source Toolkit: "Angry Magpie" for testing DLP defenses
• Browser Vulnerabilities: Attacks exploit browser features ignored by current DLP solutions
With over 60% of corporate data in the cloud and increasing reliance on browsers for data interactions, organizations must rethink their security approaches.
SquareX emphasizes that neglecting these emerging threats could lead to disastrous consequences for enterprises.