DevSecOps Cybersecurity

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

AndyC 5 April 2026

Ravie LakshmananApr 05, 2026Malware / DevSecOps Cybersecurity researchers have discovered 36 malicious packages in the npm registry that are disguised...

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

AndyC 28 March 2026

Ravie LakshmananMar 27, 2026Software Security / DevSecOps Cybersecurity researchers have disclosed details of a now-patched bug impacting Open VSX's pre-publish...

The calm before the ransom: What you see is not all there is

AndyC 1 May 2026

Ransomware A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability Tomáš Foltýn 24 Apr 2026 • ,...

The calm before the ransom: What you see is not all there is

AndyC 1 May 2026

Ransomware A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability Tomáš Foltýn 24 Apr 2026 • ,...

GopherWhisper: A burrow full of malware

AndyC 1 May 2026

ESET Research ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions Eric Howard 23 Apr 2026...

GopherWhisper: A burrow full of malware

AndyC 1 May 2026

ESET Research ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions Eric Howard 23 Apr 2026...

New NGate variant hides in a trojanized NFC payment app

AndyC 1 May 2026

ESET Research has discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged...

New NGate variant hides in a trojanized NFC payment app

AndyC 1 May 2026

ESET Research has discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged...

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 12 May 2026

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 12 May 2026

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 12 May 2026

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 12 May 2026

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 12 May 2026

DevSecOps Cybersecurity

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

The calm before the ransom: What you see is not all there is

The calm before the ransom: What you see is not all there is

GopherWhisper: A burrow full of malware

GopherWhisper: A burrow full of malware

New NGate variant hides in a trojanized NFC payment app

New NGate variant hides in a trojanized NFC payment app

Donate Bitcoin to this address

Donate Ethereum to this address

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed