Supply chain campaign has now extended to Checkmarx’s Jenkins ecosystem, with attackers pushing a malicious Checkmarx Jenkins AST plugin to the...

19 posts were published in the last hour 13:3 : Shai-Hulud Worm Steals Dev Secrets Across npm, GitHub, AWS & Kubernetes 13:3 : VMware Fusion Flaw...

Security researchers have exposed critical sandbox escape vulnerabilities in Sandboxie and Sandboxie-Plus that allow attackers to gain full...

Checkmarx warned over the weekend that a rogue version of its Jenkins Application Security Testing (AST) plugin had been published on the Jenkins...

A malicious version of the plugin was published to the Jenkins Marketplace late last week. The post Checkmarx Jenkins AST Plugin Compromised in Supply...

Public references indicate that a GitHub proof-of-concept is now circulating for CVE-2026-0073, the critical Android flaw documented in Google’s May...

1 posts were published in the last hour 10:2 : Grafana Labs Security Breach – Hackers Access GitHub and Download Codebase

Checkmarx has confirmed that a modified version of the Jenkins AST plugin was published to the Jenkins Marketplace. “If you are using Checkmarx...

1 posts were published in the last hour 9:32 : Security Affairs newsletter Round 576 by Pierluigi Paganini – INTERNATIONAL EDITION

2 posts were published in the last hour 1:2 : TeamPCP Claims Sale of Mistral AI Repositories Amid Mini Shai-Hulud Attack 0:32 : Analyzing TeamPCP’s...