Expert perspectives on application security, compliance, and emerging threats
IncidentWhat Happened A critical remote code execution vulnerability (CVE-2026-1731) in Bomgar s remote monitoring and management (RMM) platform has exposed organizations to significant risk. This flaw allowe
IncidentWhat Happened The CanisterSprawl malware campaign compromised npm packages to steal sensitive data from developer machines, such as tokens and API keys. It then used these credentials to publish more
IncidentWhat Happened In late 2024, security researchers at StepSecurity and Socket disclosed CanisterSprawl, an npm malware campaign that exploits developer environments to steal credentials and publish mali
IncidentWhat Happened On March 24, the European Commission s Security Operations Center detected unauthorized access to their AWS cloud infrastructure. The attacker, ShinyHunters, had compromised a version of
Get weekly security insights and compliance updates delivered to your inbox.
IncidentWhat Happened Threat cluster UAT-10608 exploited CVE-2025-55182 , a critical vulnerability in Next.js applications, compromising at least 766 hosts. The attackers used an automated credential harvesti
IncidentWhat Happened Between November 2024 and early 2025, threat actors linked to North Korean operations (tracked as UNC1069 and TeamPCP) compromised the Axios npm package —a JavaScript HTTP client library
IncidentWhat Happened An AI assistant discovered remote code execution (RCE) vulnerabilities in two widely-used text editors: Vim and GNU Emacs. These vulnerabilities do not require complex exploits or user i
IncidentWhat Happened CERT-EU confirmed that 350 GB of data was stolen from Europa.eu, the European Commission s web platform. The stolen data included personal names, email addresses, and internal messages f
IncidentWhat Happened For a brief period, attackers published backdoored versions of Axios to npm . Axios is an HTTP client library downloaded millions of times weekly. The malicious packages contained code t
IncidentWhat Happened The NPM package for Axios was briefly compromised this week. Axios is a JavaScript HTTP client library with approximately 9 million weekly downloads, making it one of the most widely use
IncidentOn March 31, 2026, attackers published malicious versions of axios—one of the most widely used HTTP client libraries in the JavaScript ecosystem. The compromised packages contained hidden dependencies
IncidentWhat Happened Attackers compromised the npm account of Axios lead maintainer and published malicious versions of the library containing a remote access trojan. Axios, a widely-used HTTP client library
IncidentWhat Happened On March 31, 2026, attackers published malicious versions of axios —a JavaScript HTTP client library with over 300 million weekly downloads—to the npm registry. The compromised packages
IncidentWhat Happened Google patched a critical remote code execution vulnerability in Antigravity, an internal AI-based tool. The flaw arose from a prompt-injection vulnerability that allowed attackers to es
IncidentSummary of the Incident A critical remote code execution vulnerability in Apache ActiveMQ was discovered using AI-assisted analysis in about 10 minutes. This vulnerability affects versions before 5.19
IncidentWhat Happened When CVE-2026-33626 was disclosed, attackers quickly began exploiting a server-side request forgery (SSRF) vulnerability in LMDeploy, an open-source toolkit for deploying large language
