Attacks on the NX build system and React packages highlight escalating threats to enterprise software development pipelines.

The latest example of the runaway hype that can come from such pitches is research published today by SquareX, a startup selling services for securing browsers and other client-side applications. It ...

The frequency of supply-chain attacks has reached unprecedented levels, amounting to a growing concern about the security of open-source software. Existing state-of-the-art techniques often generate a ...

A new malware campaign has affected users globally, stealing sensitive data. Identified as PXA stealer, this Python-based malware is actively targeting users across 62 countries. PXA Python Malware ...

It also attempts to inject a DLL into running instances of browsers, including Chrome, targeting Chrome's App-Bound Encryption Key to kill the internal encryption mechanisms.

This week’s threats don’t shout — they blend in, borrow trust, and drain wallets.

Lumu, the cybersecurity company pioneering Continuous Compromise Assessment, today issued the 2025 Compromise Report identifying three key cybersecurity trends including new phishing techniques, a ...

With Chainguard Libraries for Python, Chainguard delivers malware protection for one of the most critical and vulnerable parts of the supply chain — the language dependencies that developers ...

The fundamental approach is the same: Chainguard is reconstructing every single dependency for every Python library, directly from its source. This method thwarts malware injection at key weak points ...

A new strategic partnership between Thales and Deloitte combines advanced encryption and key management technology with data protection, security consulting.