npm

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

AndyC 16 February 2026

Malicious npm and PyPI packages Llinked to Lazarus APT fake recruiter campaign Pierluigi Paganini February 15, 2026 Researchers found malicious...

Beware! Fake ChatGPT browser extensions are stealing your login credentials

PackageGate bugs let attackers bypass protections in NPM, PNPM, VLT, and Bun

AndyC 29 January 2026

PackageGate bugs let attackers bypass protections in NPM, PNPM, VLT, and Bun Pierluigi Paganini January 28, 2026 Koi researchers found...

Naming and shaming: How ransomware groups tighten the screws on victims

AndyC 13 February 2026

Ransomware When corporate data is exposed on a dedicated leak site, the consequences linger long after the attack fades from the news cycle 12 Feb...

Taxing times: Top IRS scams to look out for in 2026

AndyC 11 February 2026

It’s time to file your tax return. And cybercriminals are lurking to make an already stressful period even more edgy. Phil Muncaster 10 Feb 2026...

OfferUp scammers are out in force: Here’s what you should know

AndyC 5 February 2026

The mobile marketplace app has a growing number of users, but not all of them are genuine. Watch out for these common scams. Phil Muncaster...

A slippery slope: Beware of Winter Olympics scams and other cyberthreats

AndyC 3 February 2026

Digital Security It’s snow joke – sporting events are a big draw for cybercriminals. Make sure you’re not on the losing side by following these...

A slippery slope: Beware of Winter Olympics scams and other cyberthreats

AndyC 3 February 2026

Digital Security It’s snow joke – sporting events are a big draw for cybercriminals. Make sure you’re not on the losing side by following these...

This month in security with Tony Anscombe – January 2026 edition

AndyC 31 January 2026

The year got off to a busy start, with January offering an early snapshot of the challenges that (not just) cybersecurity teams are likely to...

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

AndyC 16 February 2026

NDSS 2025 – Diffence: Fencing Membership Privacy With Diffusion Models

Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION

AndyC 16 February 2026

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

AndyC 16 February 2026

Why should IT managers feel relieved by advanced secrets management?

AndyC 15 February 2026

Are there guaranteed cybersecurity benefits with Agentic AI implementation?

AndyC 15 February 2026

npm

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

PackageGate bugs let attackers bypass protections in NPM, PNPM, VLT, and Bun

Naming and shaming: How ransomware groups tighten the screws on victims

Taxing times: Top IRS scams to look out for in 2026

OfferUp scammers are out in force: Here’s what you should know

A slippery slope: Beware of Winter Olympics scams and other cyberthreats

A slippery slope: Beware of Winter Olympics scams and other cyberthreats

This month in security with Tony Anscombe – January 2026 edition

Donate Bitcoin to this address

Donate Ethereum to this address

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Why should IT managers feel relieved by advanced secrets management?

Are there guaranteed cybersecurity benefits with Agentic AI implementation?

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed