GitHub facades and Ethereum smart contracts power a March 2026 admin-targeted campaign, enabling resilient C2 rotation and ...
Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...
Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...
The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.
Over 1,800 developers were affected by the Mini Shai-Hulud supply chain attack that hit the PyPi, NPM, and PHP ecosystems ...
Rufus is a popular tool for creating bootable USB media for installing Windows 11 or other operating systems, and its latest ...
GitHub has disclosed a critical remote code execution flaw, CVE-2026-3854, exploitable via a single git push, and a popular PyPI package tied to GitHub Actions was hacked to deliver malware. Both ...
Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...
Mistral Medium 3.5 is the rare Western entry in the open-source AI top tier, but it costs multiples more than Chinese rivals.
Using lessons from the ISS, NASA has partnered with private companies to develop new commercial space stations for research, ...
Several npm packages for SAP's cloud application development ecosystem have been compromised as TeamPCP's supply chain ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results