Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.

LofyGang resurfaces with LofyStealer disguised as Minecraft hack, exfiltrating IBANs and passwords to 24.152.36[.]241, ...

The threat actor seeding the Open VSX code marketplace with fraudulent extensions that download the GlassWorm malware has ...

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

The compromise of a version of Bitwarden's CLI is connected to the ongoing Checkmarx supply chain campaign, but differences in the operational methods of both incidents are making it difficult to ...

The Bitwarden security team confirms that a malicious version of the command-line client was briefly distributed.

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

ESET Research has uncovered a new China-aligned APT group, which has been named GopherWhisper, that targets governmental institutions in Mongolia.GopherWhisper leverages Discord, Slack, Microsoft 365 ...

E, a global leader in AI-driven product compliance solutions, today announced its Supplier SDS Loader for SAP is a winner in the 2026 Environment + Energy Leader Awards. The solution was recognized in ...

Fusion Studio adds Krokodove effects, OGraf and Lottie support, USD updates, deep image tools, and Windows ARM64 support.