An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

The threat actor infected victims with the Snow malware family – Snowbelt, Snowglaze, and Snowbasin – for persistent access.

Python has become a go-to language for cybersecurity pros thanks to its simplicity, vast library ecosystem, and ability to automate complex tasks. From real-time log analysis and threat detection to ...

As supply-chain attacks against widely-used, open-source software repositories continue, experts are urging developers to not ...

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

Malicious npm packages have been identified distributing malware that steals credentials and attempts to spread across ...

UNC6692 has been attributed to a large email campaign that's designed to overwhelm a target's inbox with a flood of spam ...

Python has emerged as a trusted ally for cybersecurity teams thanks to its ease of use, adaptability, and wide range of libraries. From building quick prototypes to automating repetitive checks, it ...

Boost Security has announced SmokedMeat, an open source red team framework for CI/CD pipelines that shows how attackers ...

Checkmarx suffers a second supply chain attack in a month, resulting in hackers injecting credential-stealing malware into ...

Scammers built a convincing fake Windows update site that installs password-stealing malware. Learn how the multi-stage ...

Chainguard, the trusted source for open source, today announced a partnership with Cursor, the leading multi-model AI coding platform, to secure the next generation of agentic software development.