Tag: Open Source Security

Tech News

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

Ravie LakshmananMar 21, 2026Malware / Threat Intelligence The threat actors behind the

Tech News

npm’s Update to Harden Their Supply Chain, and Points to Consider

The Hacker NewsFeb 13, 2026Supply Chain Security / DevSecOps In December 2025,

Tech News

ZAST.AI Raises $6M Pre-A to Scale “Zero False Positive” AI-Powered Code Security

The Hacker NewsFeb 10, 2026Application Security / Artificial Intelligence January 5, 2026,

Tech News

Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware

Cybersecurity researchers have flagged a new malicious Microsoft Visual Studio Code (VS

Tech News

Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys

Sep 06, 2025Ravie LakshmananSoftware Security / Cryptocurrency A new set of four

Tech News

Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code

Apr 04, 2025Ravie LakshmananVulnerability / Cloud Security A maximum severity security vulnerability

Tech News

Malicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before Removal

Mar 15, 2025Ravie Lakshmanan Malware / Supply Chain Security Cybersecurity researchers have

Lost your password?