News

SecurityWeek15h

Highly Popular NPM Packages Poisoned in New Supply Chain Attack

Threat actors injected malicious code into multiple popular NPM packages after their maintainers fell for a well-crafted ...

This Patch Tuesday, SAP is the worst offender and Microsoft users can kinda chill

Microsoft did find two bugs worthy of urgent attention. CVE-2025-55234 allows relay attacks and escalation of privileges ...

'ChillyHell' backdoor hid in notarized Mac apps for four years

Jamf researchers have detailed a Mac backdoor called ChillyHell that passed Apple's notarization checks in 2021 and went ...

Raghava Chellu Receives Global Leadership Award For AI Innovation At Manchester Metropolitan University, UK

Raghava Chellu receives the Global Leadership Award at ICCCNet-2025, Manchester, for his AI-driven innovations in secure file ...
Infosecurity Magazine11h

Cursor Autorun Flaw Lets Repositories Execute Code Without Consent

A newly disclosed flaw in the Cursor extension allows repositories to automatically execute code when a folder is opened, ...

How to Use GitHub Spec Kit : The Secret to Flawless AI Coding Projects

GitHub Spec Kit redefines software workflows by replacing guesswork with structured, specification-driven development. Learn how Spec Kit ...