The lead developer of the ubiquitous text editor Notepad++ has disclosed a formidable security breach that compromised the application’s update mechanism. State-sponsored adversaries successfully intercepted the update verification process, clandestinely rerouting users toward malicious...
A stealthy security breach has compromised one of the most prominent open-source content management projects. An anonymous adversary surreptitiously injected malicious code into several GitHub repositories by forcibly overwriting the commit history—a maneuver where...
Luxshare, the Chinese industrial titan responsible for assembling Apple’s most sophisticated hardware—ranging from the iPhone and AirPods to the Apple Watch and the Vision Pro headset—has purportedly succumbed to a monumental cyber-assault. The extortionist...
Over the past year, cybersecurity connoisseurs have voiced escalating trepidation regarding the startling fragility of the global logistics and freight sector. Adversaries are increasingly infiltrating supply chains, orchestrating the diversion of high-value shipments into...
Experts at SEQRITE Labs have uncovered a large-scale cyber-espionage campaign dubbed CargoTalon, specifically targeting personnel within a key enterprise of Russia’s aviation industry. The operation employs highly targeted phishing techniques, disguised as essential logistics...
An AI-powered, self-hosted GitHub bot designed to detect and mitigate supply chain attacks in pull requests. SadGuard combines intelligent code analysis with executable behavior monitoring to secure your software pipeline. SadGuard was inspired by...