Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
GitHub facades and Ethereum smart contracts power a March 2026 admin-targeted campaign, enabling resilient C2 rotation and ...
The NHS Couch to 5k app is celebrating its 10-year anniversary having reached more than eight million downloads.
Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.
Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...
If MediaFire shows a download error when you try to download a file in your browser, it usually means the file page loads correctly, but the actual ...
Four SAP NPM packages compromised in the Mini Shai-Hulud supply chain attack trigger a Bun runtime to install an information ...
MESCIUS USA Inc., a global provider of award-winning enterprise software development tools, is pleased to announce the Wijmo 2026 v1 release. The first major release of 2026 yields major accessibility ...
The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.
Fake packages aim to steal data, credentials, and secrets, and to infect every package created using them, in what could be ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results