Threat actors have been using typosquatting to deceive unsuspecting users into visiting malicious websites or downloading harmful software. These attacks involve registering domains or...
A recently discovered vulnerability in GitHub Actions artifacts, known as ArtiPACKED, has the potential to compromise repositories and gain unauthorized access to organizations' cloud...
Cybersecurity researchers have uncovered a new malicious package on the Python Package Index (PyPI) repository disguised as a library from the Solana blockchain platform,...
Cybersecurity researchers have found an accidentally leaked GitHub token that could have given unauthorized access to GitHub repositories of Python, Python Package Index (PyPI),...
"Test files" associated with the XZ Utils backdoor have been discovered in a Rust crate called liblzma-sys, according to new findings from Phylum.
liblzma-sys, which...