Ddos
A critical vulnerability has been uncovered in the @nestjs/devtools-integration packageβa component of the popular NestJS framework for...
javascript
The lightweight JavaScript utility library is is a widely popular project on the NPM platform, boasting over...
Socketβs Threat Research Team has discovered that at least 10 malicious packages were published to npm from...
Axios, the popular promise-based HTTP client for Node.js and browsers, has been found vulnerable through a critical...
A critical vulnerability has been uncovered in the widely used JavaScript library Form-Data, impacting millions of applications...
In a revelation for the JavaScript ecosystem, Socketβs Threat Research Team has uncovered the widespread proliferation of...
Google has unveiled a significant enhancement to its Advanced Protection Program, bringing its strongest account-level defenses into...
Two high-impact security advisories have been released for the pbkdf2 npm packageβan essential utility in the JavaScript...
Socket Threat Research Team has uncovered a new threat lurking within the JavaScript ecosystem: four malicious npm...
In a disturbing development for the JavaScript community, Socketβs Threat Research Team has uncovered a stealthy and...
Palo Alto Networks has issued a security advisory for a reflected cross-site scripting (XSS) vulnerability, tracked as...
More_Eggs is backβand itβs sneakier than ever. A new report by researcher Tonmoy Jitu dissects a recent...
Aikido Security has uncovered a Remote Access Trojan (RAT) embedded in rand-user-agent, a JavaScript package downloaded ~45,000...
A critical-severity security flaw has been identified in AWS Amplify Studio, specifically within the amplify-codegen-ui package. This...
The Ladybird browser engine, a relatively new entrant originating from the SerenityOS project, has been found to...
Phishing is no longer just about shady links and poorly worded emails. According to a new report...
The Yarix Incident Response Team has uncovered a sophisticated web skimming operation that weaponized obfuscated JavaScript to...
Microsoft Defender Experts (DEX) has observed a rise in malicious campaigns that use Node.js to deliver malware...
A recent report from FortiGuard Labs has uncovered a series of malicious NPM packages designed to steal...
The widely utilized PostgreSQL administration tool, pgAdmin 4, has recently addressed two significant security vulnerabilities that pose...