Supply chain risk is unavoidable, but not unmanageable. Proactively prevent supply chain attacks by embedding YARA into ...

The second Shai-Hulud attack last week exposed around 400,000 raw secrets after infecting hundreds of packages in the NPM ...

Approximately 640 NPM packages have been infected with a new variant of the Shai-Hulud self-replicating worm in a fresh wave of attacks.

"As a new and significantly more aggressive wave of npm supply chain malware, Shai-Hulud 2 combines stealthy execution, ...

Threat intelligence firm Cyble said such attacks occurred, on average, nearly 13 times per month last year, from February through September 2024. Starting in October, they surged to nearly 16 per ...

A Chinese threat actor tracked as APT24 has been observed employing multiple techniques to deploy BadAudio malware ...

In an era of global interdependence, supply chain threats have become one of the most pressing risks to business continuity.

Babel Street CEO Benji Hutchinson explains why a unified risk intelligence platform is needed for modern national security.

Sha1-Hulud malware is an aggressive npm supply-chain attack compromising CI/CD and developer environments. This blog addresses frequently asked questions and advises cloud security teams to ...

A critical Oracle Identity Manager flaw that is confirmed to be under active exploitation and may have been used as a ...

On September 17, 2024, Lebanon was rocked by a series of small but lethal explosions. In the aftermath, rumors and half-truths blew up in the news as agencies scrambled to be the first to report on ...

In recent years, we have seen a rise in attacks of a previously unheard-of type – supply chain attacks. As attack prevention in systems becomes more and more sophisticated, including dedicated ...