Search: Developer tooling

SAP fixes critical vulnerabilities in Commerce Cloud and S/4HANA

…Most recently, multiple official SAP npm packages were compromised in a supply-chain attack aimed at stealing credentials and authentication tokens from developers' systems. As the world's largest vendor of enterprise…

May 12, 2026 · Sergiu Gatlan

TeamPCP hackers advertise Mistral AI code repos for sale

…Mistral AI told BleepingComputer that the TeamPCP managed to contaminate some of the company’s software development kit (SDK) packages. In an advisory published earlier this week, the company said that the…

May 14, 2026 · Ionut Ilascu

Microsoft Self-Service Password Reset abused in Azure data theft attacks

…In the later stages of the attack, Storm-2949 deployed the ScreenConnect remote access tool on compromised systems, attempted to disable Microsoft Defender protections, and wipe forensic evidence. It should be noted…

May 19, 2026 · Bill Toulas

Laravel Lang packages hijacked to deploy credential-stealing malware

Laravel Lang packages hijacked to deploy credential-stealing malware By Lawrence Abrams May 23, 2026 04:48 PM A supply chain attack targeting the Laravel Lang localization packages has exposed developers to…

May 23, 2026 · Lawrence Abrams

New IronWorm malware hits 36 packages in npm supply-chain attack

…Once it compromises a developer or CI environment, it can publish trojanized versions of packages owned by the victim, which then infect additional developers and CI systems. This behavior is conceptually similar…

Jun 4, 2026 · Bill Toulas

SHub macOS infostealer variant spoofs Apple security updates

…If the host is not Russian, Reaper retrieves and executes the malicious AppleScript with the data theft routine using the osascript command-line tool built into macOS. Upon launch, it prompts the…

May 18, 2026 · Bill Toulas

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

…Hackers used AI to develop zero-day exploit for web admin tool Actively Exploited Authentication Bypass Catalyst SD-WAN Cisco CVE-2026-20182 Peering Zero-Day Lawrence Abrams Lawrence Abrams is the…

May 14, 2026 · Lawrence Abrams

Microsoft fixes Windows Autopatch bug installing restricted drivers

…Automated pentesting tools deliver real value, but they were built to answer one question: can an attacker move through the network? They were not built to test whether your controls block threats…

May 13, 2026 · Sergiu Gatlan

TrickMo Android banker adopts TON blockchain for covert comms

…The TrickMo banker was first spotted in September 2019 and has remained in active development, constantly receiving updates since then. In October 2024, Zimperium analyzed 40 variants of the malware delivered via…

May 11, 2026 · Bill Toulas

New Shai-Hulud malware wave compromises 600 npm packages

…As in the previous Shai-Hulud campaign impacting TanStack and Mistral packages, the payload collects secrets from developer and CI/CD environments and exfiltrates them over the Session P2P network to complicate…