Tag: #cloudsecurity
APIs have always been attractive targets. They expose business logic, move sensitive data, and often sit behind minimal user interfaces. But over the last year, the nature of API attacks has changed in a fundamental way. Generative AI has given attackers something they never had before: the ability to explore, adapt, and chain attacks at […]
A major npm supply chain attack has compromised more than 40 Node Package Manager (npm) packages, injecting a malicious script called bundle.js to steal sensitive developer credentials. According to security researchers, the campaign, dubbed the Shai-Hulud attack, uses the open-source tool TruffleHog (TruffleHog Secret Scanner) to extract secrets such as GitHub personal access tokens, Node […]
As most of us are aware, cyber-attacks do not remain the same. With the passage of time, they become more advanced and sophisticated. In 2025, cybercrime is more than a risk, it’s a global crisis. Annual damages are projected to hit $10.5 trillion, up from $3 trillion in 2015 (Cybersecurity Ventures). The average cost of […]