11/23
11/24
11/25
8 Posts

Sha1-Hulud 2.0 Supply Chain Attack: 25K+ npm Repos Exposed | Wiz Blog

https://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attack
Sha1-Hulud 2.0 Supply Chain Attack: 25K+ npm Repos Exposed | Wiz Blog
7 Posts

Shai Hulud 2.0 Strikes Again: Malware Supply-Chain Attack Hits Zapier & ENS Domains

https://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomains
Shai Hulud 2.0 Strikes Again: Malware Supply-Chain Attack Hits Zapier & ENS Domains
7 Posts

poc_25_js_engine_security_in_2025.pdf

https://saelo.github.io/presentations/poc_25_js_engine_security_in_2025.pdf
poc_25_js_engine_security_in_2025.pdf
5 Posts

Harvard University discloses data breach affecting alumni, donors

https://www.bleepingcomputer.com/news/security/harvard-university-discloses-data-breach-affecting-alumni-donors/
Harvard University discloses data breach affecting alumni, donors
4 Posts

Edit fiddle - JSFiddle - Code Playground

https://jsfiddle.net/4v6xksaf/
Edit fiddle - JSFiddle - Code Playground
4 Posts

Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or Uyghurs

https://thehackernews.com/2025/11/chinese-ai-model-deepseek-r1-generates.html
Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or Uyghurs
4 Posts

Shai-Hulud malware infects 500 npm packages, leaks secrets on GitHub

https://www.bleepingcomputer.com/news/security/shai-hulud-malware-infects-500-npm-packages-leaks-secrets-on-github/
Shai-Hulud malware infects 500 npm packages, leaks secrets on GitHub
3 Posts

ClickFix attack uses fake Windows Update screen to push malware

https://www.bleepingcomputer.com/news/security/clickfix-attack-uses-fake-windows-update-screen-to-push-malware/
ClickFix attack uses fake Windows Update screen to push malware
3 Posts

Malicious Blender model files deliver StealC infostealing malware

https://www.bleepingcomputer.com/news/security/malicious-blender-model-files-deliver-stealc-infostealing-malware/
Malicious Blender model files deliver StealC infostealing malware
3 Posts

x64 Return Address Spoofing | HulkOps

https://hulkops.gitbook.io/blog/red-team/x64-return-address-spoofing
x64 Return Address Spoofing | HulkOps
3 Posts

Real-estate finance services giant SitusAMC breach exposes client data

https://www.bleepingcomputer.com/news/security/real-estate-finance-services-giant-situsamc-breach-exposes-client-data/
Real-estate finance services giant SitusAMC breach exposes client data
3 Posts

Flare-On 12 – Task 9 | hasherezade's 1001 nights

https://hshrzd.wordpress.com/2025/11/20/flare-on-12-task-9/
Flare-On 12 – Task 9 | hasherezade's 1001 nights
3 Posts

Microsoft to remove WINS support after Windows Server 2025

https://www.bleepingcomputer.com/news/microsoft/microsoft-to-remove-wins-support-after-windows-server-2025/
Microsoft to remove WINS support after Windows Server 2025