Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...
The 2026 picoCTF season is officially underway, bringing with it a fresh set of challenges that test both Python proficiency and cybersecurity intuition. Meanwhile, the February 2026 International AI ...
More than 1,600 malicious messages from the China-backed APT group deliver the previously undocumented ABCDoor backdoor and ...
Several npm packages for SAP's cloud application development ecosystem have been compromised as TeamPCP's supply chain ...
Over 1,800 developers were likely infected in the Mini Shai-Hulud supply chain attack that hit SAP, Lightning, and Intercom ...
Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...
An exploit has been published for a local privilege escalation vulnerability dubbed "Copy Fail" that impacts Linux kernels ...
Yet another npm supply-chain attack is worming its way through compromised packages, stealing secrets and sensitive data as ...
An attacker poisoned 84 TanStack npm versions across 42 packages, stealing GitHub OIDC tokens and cloud keys while planting a ...
Linux users should update their servers now, or face possible attack.
The critical "Copy Fail" bug (CVE-2026-31431) affects all Linux kernels since 2017, allowing unprivileged local users to gain ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results