It's an absolute beast with over 700 fixes and active zero-days landing right as major SQL and SharePoint versions hit end of ...
Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages that masquerade as Rollup polyfill tooling to facilitate remote access and data theft. According to ...
The Miasma malware campaign has claimed another victim, poisoning more than 20 versions of legitimate npm packages used by the Leo Platform and RStreams ecosystems as its operators continue refining ...
Microsoft’s monthly update included 206 fixes for flaws in everything from Windows to Office to Exchange Server, not to mention three zero-days.
Apple is opening App Store subscription bundles to developers from different companies, giving independent app makers a new way to package services together and sell them at a combined price. The ...
Researchers have uncovered a new Shai-Hulud malware variant targeting Red Hat-related npm packages, spreading through software publishing ecosystems for persistence and credential theft. Developers ...
Researchers have uncovered a new Shai-Hulud malware variant that now also gathers Google Cloud and Azure identities, an addition to its previous credential-snatching behavior. Developers who pulled ...
Cybersecurity compliance firms StepSecurity and SafeDep discovered a coordinated open-source software supply-chain attack that hijacked developer credentials to distribute malicious code updates to ...
Four official SAP npm packages were compromised on April 29, 2026 in a supply chain attack dubbed “Mini Shai-Hulud” that injected malicious preinstall scripts to steal developer credentials, CI/CD ...
A supply chain attack on SAP-related npm packages has put fresh scrutiny on the developer tools and build workflows that enterprises rely on to produce software. The campaign, referred to as “mini ...
An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive developer data and cryptocurrency wallets. The dangerous release is 0.23.3, ...
一些您可能无法访问的结果已被隐去。
显示无法访问的结果