Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
Cross-platform game engine GameMaker has unveiled a major update centred on the launch of its new GameMaker Runtime (GMRT).
Earn these JavaScript certs to demonstrate mastery of the most in-demand skills for the world’s most-used programming ...
ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware Delivery
ThreatDown’s EDR team discovered a sophisticated, multi-stage attack chain during an active investigation; the first documented case of attackers abusing the Deno runtime as a malware execution ...
The popular game engine GameMaker continues advancing, with a new GMRT runtime that will give developers source access and ...
Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...
SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.
Four SAP NPM packages compromised in the Mini Shai-Hulud supply chain attack trigger a Bun runtime to install an information ...
A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...
Cryptopolitan on MSN
Hacker target the OpenVSX ecosystem to steal crypto wallets
GlassWorm, a known malware, has put 73 harmful extensions into OpenVSX's registry. Hackers use it to steal developers' crypto ...
Constructive, the company behind open-source Postgres and JavaScript infrastructure with over 100 million open-source ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results