Scan Bitbucket rivela 6.212 segreti live mentre una flaw PyPI espone a takeover dominio e rischi per la supply chain open source.

#Bitbucket #PyPI #Python #ReversingLabs #TruffleSecurity
www.matricedigitale.it/2025/11/29/s...

Ethereum smart contracts used to push malicious code on npm | ReversingLabs RL discovered how the contracts were abused — and how this incident is part of a larger campaign to promote malicious packages on top repositories.

⚠️ كشفت #ReversingLabs حملة استغلال ذكية تستخدم عقود #Ethereum لنقل روابط خبيثة عبر مكتبات #npm مثل #mimelib2. تستدعي الأكواد تعليمات ضارة من #البلوكتشين لحظة التثبيت، ما يفتح بابًا لتهديدات يصعب رصدها بالطرق التقليدية. #Malware #CyberSecurity #Web3
www.reversinglabs.com/blog/ethereu...

Why the 2025 PyPI Attack Signals a New Era in Cloud Risk The 2025 PyPI supply chain attack is a stark reminder of just how vulnerable cloud ecosystems remain to sophisticated, stealthy, and evolving threats.

2025年のPyPI攻撃がクラウドリスクの新たな時代を告げる理由

Why the 2025 PyPI Attack Signals a New Era in Cloud Risk #SecurityBoulevard (Apr 16)

#PyPI攻撃 #クラウドリスク #サプライチェーンセキュリティ #認証情報窃取 #ReversingLabs

Original post on helpnetsecurity.com

Hackers target AI and crypto as software supply chain risks grow The growing sophistication of so...

www.helpnetsecurity.com/2025/03/18/software-supp...

#News #Artificial #intelligence #cybersecurity #open #source #report […]

[Original post on helpnetsecurity.com]

Glasswall Implements Advanced Threat Intelligence to Strengthen File Protection Capabilities with ReversingLabs Glasswall has teamed up with ReversingLabs to amplify file protection through advanced threat intelligence, enhancing security standards for organizations globally.

Glasswall Implements Advanced Threat Intelligence to Strengthen File Protection Capabilities with ReversingLabs #London #Cybersecurity #UK #Glasswall #ReversingLabs

Hugging Face platform continues to be plagued by vulnerable ‘pickles’ A widely used python module for machine-learning developers can be loaded with malware and bypass detection measures.

Researchers at #ReversingLabs have identified at least two machine-learning models on #HuggingFace, a popular platform for community #AI development, that link to #malicious web shells and managed to evade detection through the use of “pickling.” cyberscoop.com/hugging-face...

Hugging Face platform continues to be plagued by vulnerable ‘pickles’ A widely used python module for machine-learning developers can be loaded with malware and bypass detection measures.

Researchers at #ReversingLabs have identified at least two machine-learning models on #HuggingFace, a popular platform for community #AI development, that link to #malicious web shells and managed to evade detection through the use of “pickling.” cyberscoop.com/hugging-face...

DevOps Dozen 2024 Finalists - Public Voting Take this survey powered by surveymonkey.com. Create your own surveys for free.

I'm proud to share that #ReversingLabs
has been nominated for best #DevSecOps solution in the #DevOpsDozenAwards. Your support means everything - help name us a winner by voting for “ReversingLabs Spectra Assure” in Section 15 using the link. #Community

www.surveymonkey.com/r/DevOps-Doz...