Two different attackers poisoned popular open source tools - and showed us the future of supply chain compromise

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...

Major compromise of the telnyx PyPI library could put millions of users at risk

TeamPCP strikes again, with almost identical code to LiteLLM.

Le piratage du npm d'Axios fragilise des millions d'applications

Des cybercriminels ont détourné le compte npm d'Axios, un client HTTP JavaScript comptant plus de 100 millions de téléchargements ...