packages

Hijacked npm Packages Deliver Malware via Solana, Linked to Glassworm

Hijacked npm Packages Deliver Malware via Solana, Linked to Glassworm

AndyC 18 March 2026

Sonatype Security Research has identified two hijacked npm packages in the React Native ecosystem that receive more than 30,000...

Read More

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 84

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

AndyC 16 February 2026

Malicious npm and PyPI packages Llinked to Lazarus APT fake recruiter campaign Pierluigi Paganini February 15, 2026 Researchers found malicious...

Read More

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

AndyC 13 February 2026

Cybersecurity researchers have discovered a fresh set of malicious packages across npm and the Python Package Index (PyPI) repository linked...

Read More

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

AndyC 7 February 2026

Cybersecurity researchers have discovered a new supply chain attack in which legitimate packages on npm and the Python Package Index...

Read More

MoltBot Skills exploited to distribute 400+ malware packages in days

MoltBot Skills exploited to distribute 400+ malware packages in days

AndyC 3 February 2026

MoltBot Skills exploited to distribute 400+ malware packages in days Pierluigi Paganini February 02, 2026 Over 400 malicious OpenClaw packages...

Read More

EDR killers explained: Beyond the drivers

EDR killers explained: Beyond the drivers

AndyC 20 March 2026

In recent years, EDR killers have become one of the most commonly seen tools in modern ransomware intrusions: an attacker acquires high privileges, deploys such...

Read More

Face value: What it takes to fool facial recognition

Face value: What it takes to fool facial recognition

AndyC 14 March 2026

ESET’s Jake Moore used smart glasses, deepfakes and face swaps to ‘hack’ widely-used facial recognition systems – and he'll demo it all at RSAC 2026...

Read More

Cyber fallout from the Iran war: What to have on your radar

Cyber fallout from the Iran war: What to have on your radar

AndyC 13 March 2026

The war in Iran was less than 24 hours old when it produced a historic first: the deliberate targeting of commercial data centers. On March...

Read More

Sednit reloaded: Back in the trenches

Sednit reloaded: Back in the trenches

AndyC 11 March 2026

Since April 2024, Sednit’s advanced development team has reemerged with a modern toolkit centered on two paired implants, BeardShell and Covenant, each using a different...

Read More

What cybersecurity actually does for your business

What cybersecurity actually does for your business

AndyC 7 March 2026

Business Security The ability to continue operating safely in an unsafe environment where competitors cannot is a competitive advantage that is rarely measured or discussed...

Read More

How SMBs use threat research and MDR to build a defensive edge

How SMBs use threat research and MDR to build a defensive edge

AndyC 6 March 2026

Corporate IT and security teams have the unenviable task of keeping relentless and increasingly sophisticated adversaries at bay. They’re often faced with limited resources and...

Read More

EDR killers explained: Beyond the drivers

EDR killers explained: Beyond the drivers

AndyC 20 March 2026

Key Aspects of EASA Certification and Compliance

Key Aspects of EASA Certification and Compliance

AndyC 20 March 2026

Key Aspects of EASA Certification and Compliance

Announcing langchain-textual: PII redaction and synthesis for LangChain on Tonic Textual

AndyC 20 March 2026

Magazine Insights

Automated Threat Detection for Quantum-Enabled Adversarial Attacks on AI Context

AndyC 20 March 2026

Magazine Insights

Automated Threat Detection for Quantum-Enabled Adversarial Attacks on AI Context

AndyC 20 March 2026