Found 111 results
A widely used Python package was quietly turned into a weapon, and most developers who got hit had no idea it happened....
Databricks is currently investigating an alleged security compromise connected to the massive TeamPCP software supply ch...
Application Performance Monitoring Tools Applications’ performance and availability are monitored, measured, and optimiz...
A coordinated supply chain attack has been uncovered targeting developers who build applications on Strapi, a widely use...
A new attack campaign is actively targeting open-source repositories on GitHub by carefully disguising malicious code as...
A newly discovered high-severity vulnerability in Docker Engine could allow attackers to bypass authorization plugins an...
Microsoft has released patch Tuesday security updates to address a newly discovered zero-day vulnerability in the Micros...
A serious supply chain threat has surfaced in the npm ecosystem. Malicious versions of packages belonging to Namastex.ai...
A significant supply chain attack targeting the official checkmarx/kics Docker Hub repository, where threat actors pushe...
A major software supply chain attack has compromised the popular Python package elementary-data, exposing thousands of d...
In early 2026, two critical authentication bypass vulnerabilities in the popular open-source Qinglong task scheduler wer...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Linux kernel zero-day vulnerabilit...