SecurityWeek Cybersecurity News, Insights & Analysis
- Popular Scraping Tool’s NPM Package Compromised in Supply Chain Attackby Ionut Arghire on 9 May 2025 at 2:12 pm
Supply chain attack compromises the popular rand-user-agent NPM package to deploy and activate a backdoor. The post Popular Scraping Tool’s NPM Package Compromised in Supply Chain Attack appeared first on SecurityWeek.
- 160,000 Impacted by Valsoft Data Breachby Ionut Arghire on 9 May 2025 at 1:34 pm
VMS firm Valsoft Corporation says the personal information of over 160,000 people was compromised in a February 2025 data breach. The post 160,000 Impacted by Valsoft Data Breach appeared first on SecurityWeek.
- Malicious NPM Packages Target Cursor AI’s macOS Usersby Ionut Arghire on 9 May 2025 at 12:51 pm
Three NPM packages posing as developer tools for Cursor AI code editor’s macOS version contain a backdoor. The post Malicious NPM Packages Target Cursor AI’s macOS Users appeared first on SecurityWeek.
- Rising Tides: Kelley Misata on Bringing Cybersecurity to Nonprofitsby Jennifer Leggio on 9 May 2025 at 12:00 pm
Sightline Security’s founder explains why nonprofits need cybersecurity solutions tailored to their unique missions — and why vendors need to listen. The post Rising Tides: Kelley Misata on Bringing Cybersecurity to Nonprofits appeared first on SecurityWeek.
- SAP Zero-Day Targeted Since January, Many Sectors Impacted by Ionut Arghire on 9 May 2025 at 10:49 am
Hundreds of SAP NetWeaver instances hacked via a zero-day that allows remote code execution, not only arbitrary file uploads, as initially believed. The post SAP Zero-Day Targeted Since January, Many Sectors Impacted appeared first on SecurityWeek.