Cybernews

Hundreds of NPM packages compromised as ongoing supply chain attack snowballs out of control

Halud, is compromising hundreds of NPM packages, spreading self-replicating malware, exfiltrating data, and turning private ...

GitHub moves to tighten npm security amid phishing, malware plague

GitHub, which owns the npm registry for JavaScript packages, says it is tightening security in response to recent attacks.
SiliconANGLE

Chainguard introduces Java libraries for secure language dependency management

Secure software supply chain solution provider Chainguard Inc. today announced Chainguard Libraries, a new product line that offers secure language libraries for Java built directly from source in ...
Tech Wire Asia

Oracle unveils Java 25

Oracle unveils Java 25 with beginner-friendly features and eight years of enterprise support, reinforcing its role in ...
SecurityWeek

Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit

Shai-Hulud is the third major supply chain attack targeting the NPM ecosystem after the s1ngularity attack and the recent ...
Krebs on Security

Self-Replicating Worm Hits 180+ Software Packages

The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...
TWCN Tech News

Java Application Blocked by Java Security [Fix]

It came to our attention that the Java application blocker is prompting that self-assigned or untrusted applications have been blocked due to security settings. Due to this issue, some of the ...

Strong Java LTS arrives with the release of 25

Oracle has released JDK (Java Development Kit) 25, the first long term support (LTS) version since JDK 21 two years ago. New ...