SecurityWeek

‘HTTP/2 Bomb’ Exploit Knocks Web Servers Offline in Seconds

The HTTP/2 Bomb exploit chains two known denial-of-service (DoS) attack techniques to knock major web servers offline.
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
UMass Lowell

UMass Lowell Library

In May the university dedicated the newly renamed Martin T. Meehan Student Center to our University of Massachusetts President, and former UMass Lowell (UML) Chancellor, Marty Meehan. Meehan has a ...