The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.

ZAP (Zealous Auctions Protocol) brings transparent, on-chain price discovery to the IGRA token sale using the same continuous clearing auction mechanism that processed $59 million from 17,000 bidders ...

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...

A compromised key enabled an attacker to illegally mint 80 million USR tokens, causing the stablecoin to lose its dollar peg.

Attackers have hijacked 75 of 76 GitHub Actions tags for Aqua Security's Trivy scanner, distributing credential-stealing ...

The altcoin market showed some strength against Bitcoin, and there were standout bullish coins such as KAS and DEXE.

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, ...

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across ...

Hedera (HBAR) dropped by over 3.32%, forcing it to drop from $0.098 to $0.095 on a daily chart amid the major decision on the ...