software-supply-chain
21 articles with this tag
HIGH
HIGH
HIGH
HIGH
CRITICAL
HIGH
INFO
MEDIUM
HIGH
INFO
HIGH
INFO
INFO
HIGH
CRITICAL
HIGH
CRITICAL
CRITICAL
INFO
INFO
INFO
Laravel-Lang Packages Poisoned for Malware Delivery
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
Laravel Lang packages hijacked to deploy credential-stealing malware
A hacker group is poisoning open source code at an unprecedented scale
Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise
SAP npm package attack highlights risks in developer tools and CI/CD pipelines
Emerging Enterprise Security Risks of AI
STARDUST CHOLLIMA Likely Compromises Axios npm Package
Are you thinking about software supply chain attacks? #hacker @endingwithali #cybersecurity
Legitify: Open-source scanner for security misconfigurations on GitHub and GitLab
Reverse Engineering a Multi Stage File Format Steganography Chain of the TeamPCP Telnyx Campaign
Microsoft Abruptly Terminates VeraCrypt Account, Halting Windows Updates
Supply chain security is now a board-level issue: Here’s what CSOs need to know
Defending Your Software Supply Chain: What Every Engineering Team Should Do Now
Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069
Breakdown: How TeamPCP hid malware inside WAV files using audio steganography
Telnyx package on PyPI compromised by TeamPCP. WAV steganography used for payload delivery
Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets
Open-source security debt grows across commercial software
Securing the Agentic Endpoint
Die besten DAST- & SAST-Tools