Application Security
Code hosting platform GitHub on Wednesday said it would make it mandatory for software developers to use at least one form of two-factor authentication (2FA) by...
Hi, what are you looking for?
SecurityWeek
Cybersecurity Funding
The funding round brings the total amount raised by the NetRise to roughly $25 million.
Malware & Threats
The flaw, tagged as CVE-2025-30406, was added to CISA’s Known Exploited Vulnerabilities (KEV) catalog in early April.
Supply Chain Security
Researchers uncover new software supply chain threat from LLM-generated package hallucinations.
Cybercrime
Threat actors are publishing malicious NPM packages to steal PayPal credentials and hijack cryptocurrency transfers.
Application Security
Evidence shows a SpotBugs token compromised in December 2024 was used in the March 2025 GitHub Actions supply chain attack.
Supply Chain Security
Join the virtual event as we explore of the critical nature of software and vendor supply chain security issues.
Supply Chain Security
As the world increasingly moves to the cloud and digital-everything, organizations’ risk postures have also changed. Embedding security into the business is the new,...
Application Security
The Open Source Security Foundation (OpenSSF) has announced a new project whose goal is to help identify malicious packages in open source repositories.
Application Security
Source Defense, a provider of web application client-side protection, says it pocketed $27 million in Series B funding, bringing the total investment raised by...
Cybersecurity Funding
Geneva-based code quality company is cashing in on heightened investor interest in the software supply chain security space
Cybersecurity Funding
Fortress Information Security on Tuesday announced raising $125 million from Goldman Sachs, an investment that it plans on using to help critical industry operators...
Application Security
Google has teamed up with GitHub for a solution that should help prevent software supply chain attacks such as the ones that affected SolarWinds...
Audits
Threat hunters at Checkmarx on Monday raised an alarm after discovering a threat actor fully automating the creation and delivery of "hundreds of malicious...
Supply Chain Security
Application Security
A cybersecurity startup is warning of a major, unattended weak link in the software supply chain: the vexing problem of valuable corporate secrets --...
Application Security
Software supply chain security fears escalated again this week with the discovery of what’s being described as "deliberate sabotage" of code in the open-source...
Supply Chain Security
Artificial Intelligence
With unapproved AI tools entrenched in daily workflows, experts say it’s time to shift from monitoring to managing Shadow AI use across the enterprise.
Vulnerabilities
Vulnerabilities
Malware & Threats
Data Breaches
Cybercrime
Noteworthy stories that might have slipped under the radar: 4chan hacked, auto-reboot security feature coming to Android, Iranian administrator of Nemesis charged in US.
Cybersecurity Funding
Data Breaches
Data Breaches
Vulnerabilities
