libraries
-
The Importance of Defining Secure Code
The developers who create the software, applications and programs that drive digital business have become the lifeblood of many organizations.…
Read More » -
NPM Bug Allowed Attackers to Distribute Malware as Legitimate Packages
A “logical flaw” has been disclosed in NPM, the default package manager for the Node.js JavaScript runtime environment, that enables…
Read More » -
15-Year-Old Bug in PEAR PHP Repository Could’ve Enabled Supply Chain Attacks
A 15-year-old security vulnerability has been disclosed in the PEAR PHP repository that could permit an attacker to carry out…
Read More » -
Over 200 Malicious NPM Packages Caught Targeting Azure Developers
A new large scale supply chain attack has been observed targeting Azure developers with no less than 218 malicious NPM…
Read More » -
U.S. Government Warns Companies of Potential Russian Cyber Attacks
The U.S. government on Monday once again cautioned of potential cyber attacks from Russia in retaliation for economic sanctions imposed…
Read More » -
Multiple Security Flaws Discovered in Popular Software Package Managers
Multiple security vulnerabilities have been disclosed in popular package managers that, if potentially exploited, could be abused to run arbitrary…
Read More » -
25 Malicious JavaScript Libraries Distributed via Official NPM Package Repository
Another batch of 25 malicious JavaScript libraries have made their way to the official NPM package registry with the goal…
Read More » -
First Patch Tuesday of 2022 Brings Fix for a Critical ‘Wormable’ Windows Vulnerability
Microsoft on Tuesday kicked off its first set of updates for 2022 by plugging 96 security holes across its software…
Read More » -
Researchers Find Bugs in Over A Dozen Widely Used URL Parser Libraries
A study of 16 different Uniform Resource Locator (URL) parsing libraries has unearthed inconsistencies and confusions that could be exploited…
Read More »