Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were receiving unauthorized patch updates, all containing the same hidden ...

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

I thought I hated extraction shooters. Marathon changed my mind

I know I have. I’m still haunted by the experience of trying to play Dota 2 for the first time, only to be yelled at by my team for not immediately understanding its multitude of nuances. My hasty ...