Code Defence

Summary: Researchers have identified a new supply chain attack vector dubbed “Slopsquatting.” Attackers are registering package names on npm and […]

Summary: A critical vulnerability (CVE-2026-1022) in a widely used Jenkins artifact management plugin is being exploited to replace legitimate software

Summary: A hacking group has released “TotalRecall,” a tool that exploits a flaw in Microsoft’s “Recall” feature (which takes constant

Summary: The Central Bank of Bahrain (CBB) has released a new directive today holding financial institutions “strictly liable” for financial

Summary: Security researchers have discovered that several popular “distilled” versions of the DeepSeek-V3 coding model, hosted on public repositories, contain

Summary: Security researchers have detailed “BodySnatcher,” a new vulnerability affecting “Agentic AI” systems (AI that can perform actions autonomously). By

Summary: A new variant of the “ClickFix” social engineering tactic, dubbed “CrashFix,” has emerged. It uses a malicious Chrome extension

Summary: In a surprising counter-move, Chinese customs have effectively banned Nvidia’s newly-approved H200 AI chips. While the US government recently

Summary: Grubhub has confirmed a significant data breach linked to the ongoing Salesforce/Zendesk credential theft campaign. The threat actor group

Summary: GitLab has released urgent updates to fix multiple critical vulnerabilities (including CVE-2025-3950) that allow for Authentication Bypass and Remote