News
The largest supply-chain compromise in the history of the NPM ecosystem has impacted roughly 10% of all cloud environments, ...
Two billion downloads per week. That’s the download totals for the NPM packages compromised in a supply-chain attack this week. Ninety-nine percent of the cloud depends on one of the ...
DEF CON happened just a few weeks ago, and it’s time to cover some of the interesting talks. This year there were two talks ...
The Spectre-like CPU branch target injection (BTI) breaks the guest-host layer in virtualized environments, introducing a new threat to data centers and the cloud.
Security experts have warned that a newly discovered supply chain attack targeting npm packages is still active and may ...
An attack targeting the Node.js ecosystem was just identified — but not before it compromised 18 npm packages that account ...
NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by ...
Less $50 worth of crypto has been stolen from the large-scale JavaScript libraries attack on Monday, which targeted Ethereum ...
Open source software is a pivotal infrastructural component of the modern internet, but its unique security dilemmas can, on ...
Earlier this week, the Npm package manager suffered what may be its worst security incident to date. Unknown cybercriminals ...
This week, one story stands out above the rest: the Salesloft–Drift breach, where attackers stole OAuth tokens and accessed ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback