May 25, 2026 | Podcast
Staged publishing and new install-time controls for npm GitHub has released two significant security updates for npm, the world’s largest software package registry and the primary distribution channel through which JavaScript developers share and consume...
May 22, 2026 | Podcast
https://hackerone.com/ibb/bounty_table_versions?change=2026-05-18T20%3A25%3A03.903Z&type=team HackerOne has cut reward payments across its Internet Bug Bounty (IBB) program by more than 75 percent, reducing the payout for a critical vulnerability from $9,250 to...
May 21, 2026 | Podcast
https://blog.gitguardian.com/how-we-got-a-cisa-github-leak-taken-down-in-26-hours Researchers at GitGuardian discovered a public GitHub repository named “Private-CISA” containing 844 megabytes of sensitive data belonging to the United States Cybersecurity...
May 20, 2026 | Podcast
https://infosec.exchange/@rebane2001/116606719764376414 Google briefly made public the technical details of an unpatched security vulnerability in Chromium, the open-source browser engine underpinning Google Chrome, Microsoft Edge, Brave, Opera, and dozens of other...
May 19, 2026 | Podcast
https://github.com/nrwl/nx-console/security/advisories/GHSA-c9j4-9m59-847w GitHub has confirmed that an employee device was compromised via a poisoned Microsoft Visual Studio Code extension, resulting in the exfiltration of approximately 3,800 internal repositories....
May 18, 2026 | Podcast
https://grafana.com/blog/grafana-labs-security-update-latest-on-tanstack-npm-supply-chain-ransomware-incident Grafana Labs, the company behind one of the most widely deployed open-source observability platforms in the world, has confirmed it was targeted by a...
