Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

Supply chain attacks feel like they're becoming more and more common.

RSAC 2026 The now-infamous Anthropic report about Chinese cyberspies abusing Claude AI to automate cyberattacks was a ...

US companies and critical infrastructure facilities are on alert for a surge in disruptive cyber threats from Iran-affiliated groups and traditional ransomware criminals as US-Israeli led attacks ...

The university course’s campus network already has an Intrusion Detection System in place. The intrusion detection system’s current status was not functioning properly in some regards. The system ...

This week it was reported that U.S. Cybersecurity and Infrastructure Security Agency is in dire shape, after a year of cuts, layoffs, and furloughs under the Trump administration. Now the agency has ...