Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.

Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

Vibe coding is legit enough that enterprises need to start experimenting. Finding the right tool for your users and use cases is the first step.

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

Home » Security Bloggers Network » Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude Code to Compromise the CAP Framework The post Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude ...

Iran’s barbaric regime is set to execute its first female protester over recent protests, one of an estimated 1,600 sentenced to death by the Islamic Republic in the past year. Bita Hemmati is the ...

Iran is set to execute its first female protester tied to the January 2026 uprising in Tehran, according to multiple human rights organizations. Bita Hemmati was named in a collective death sentencing ...

Mohammadreza Majidi-Asl and his wife Bita Hemmati are among the four people sentenced to death. Iranian authorities have sentenced to death four more people, including a woman, over protests in ...

IRAN is set to execute its first female protester as the bloodthirsty regime continues to crackdown on anti-regime demonstrations. Over 1,600 people have reportedly been sent to the gallows in the ...