All posts tagged "open source security"
-
Security
/ 2 days agoPyPI Package Hack Steals Credentials in Supply Chain Attack
A software supply chain attack has targeted users of the popular machine learning framework PyTorch Lightning, with threat actors pushing two...
-
Security
/ 1 week agoSelf-Propagating Worm Hijacks npm Packages to Steal Tokens
cybersecurity researchers have identified a new series of compromised software packages that are being used to deliver a self-propagating worm. This...
-
Security
/ 3 weeks agoNorth Korean Hackers Flood Open-Source Repositories with Malware
A persistent North Korean cyber-espionage campaign has significantly expanded its reach by publishing approximately 1,700 malicious software packages across major open-source...
-
Security
/ 4 weeks agoNorth Korean Hackers Target Axios Maintainer in npm Attack
The maintainer of the widely used Axios JavaScript library has confirmed a recent supply chain attack was the result of a...
-
Security
/ 1 month agoGoogle Links Axios npm Attack to North Korean Hackers
Google has formally attributed a recent software supply chain attack to a North Korean state-sponsored hacking group. The attack targeted the...
-
Artificial Intelligence
/ 1 month agoAI Startup Mercor Hit by Cyberattack via Compromised Open-Source Tool
AI recruiting startup Mercor has confirmed a security incident after a cybercriminal group claimed responsibility for stealing data from the company’s...
-
Security
/ 1 month agoAxios npm Package Compromised in Supply Chain Attack
Two versions of the widely used Axios HTTP client library were found to contain malicious code this week, following a compromise...
-
Security
/ 1 month agoSupply Chain Attack Spreads Worm Through npm Packages
A significant software supply chain attack has compromised dozens of popular npm packages, deploying a self-propagating worm. Security researchers report that...
-
Security
/ 1 month agoTrivy GitHub Actions Compromised, Secrets Stolen in Supply Chain Attack
The GitHub Actions for Trivy, a widely used open-source security scanner, were compromised for the second time in a month, leading...
Artificial Intelligence
Musk versus Altman legal battle intensifies in court
Artificial Intelligence
Musk Testifies in OpenAI Lawsuit Over For-Profit Shift
Artificial Intelligence
Meta acquires robotics startup for humanoid AI push
Artificial Intelligence
Replit CEO discusses Cursor deal, Apple conflict, and staying independent
Recent Posts
