Tag: #cloudsecurity
A major npm supply chain attack has compromised more than 40 Node Package Manager (npm) packages, injecting a malicious script called bundle.js to steal sensitive developer credentials. According to security researchers, the campaign, dubbed the Shai-Hulud attack, uses the open-source tool TruffleHog (TruffleHog Secret Scanner) to extract secrets such as GitHub personal access tokens, Node […]
As most of us are aware, cyber-attacks do not remain the same. With the passage of time, they become more advanced and sophisticated. In 2025, cybercrime is more than a risk, it’s a global crisis. Annual damages are projected to hit $10.5 trillion, up from $3 trillion in 2015 (Cybersecurity Ventures). The average cost of […]
Non-human identities (NHIs) are reshaping how organizations secure their infrastructure. As cloud-native architectures, automation, and DevSecOps become the norm, the volume of these identities has exploded—now far exceeding human users in most enterprise environments. But while NHIs power efficiency and scalability, they also introduce new risks. If unmanaged, they can become a silent threat vector for […]