Bleeping Computer

Official CheckMarx Jenkins package compromised with infostealer

Checkmarx warned over the weekend that a rogue version of its Jenkins Application Security Testing (AST) plugin had been published on the Jenkins Marketplace. The compromise was claimed by the TeamPCP ...

The Hidden Risk In Access Management: How Identity Sprawl Is Undermining Business Security

Access sprawl—not onboarding or offboarding—is the biggest identity security risk. Here's how overprovisioned permissions ...
CSO Online

Malicious Hugging Face model masquerading as OpenAI release hits 244K downloads

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...