Dark Reading

Shai-hulud 2.0 Variant Threatens Cloud Ecosystem

The latest attack from the self-replicating, npm-package poisoning worm can also steal credentials and secrets from AWS, ...

Agent coordination is the missing piece in AI commerce — new AWS and Visa blueprints target the gap

Visa lists its Intelligent Commerce platform on AWS in hopes of reaching scale and streamlining the path toward agentic ...

Code beautifiers expose credentials from banks, govt, tech orgs

Thousands of credentials, authentication keys, and configuration data impacting organizations in sensitive sectors have been ...
The Hacker News

Years of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API Keys

Researchers uncovered 5GB of leaked credentials from JSONFormatter and CodeBeautify, exposing sensitive data across critical ...
Cryptopolitan on MSN

Alert: Over 80,000 passwords and keys files from governments, banks, and tech firms leaked online

Researchers uncover more than 80,000 leaked passwords, keys, and sensitive files exposed on popular online code formatting ...

Datadog’s 2025 State Of Cloud Security Report Reveals Credential Theft Spike Drives Data Perimeter Adoption

Sydney – 26 November 2025 – Datadog, Inc. (NASDAQ: DDOG), the monitoring and security platform for cloud applications, has ...

This devious botnet tried a trial run during the recent AWS outage - so when will it be back?

Shortly after ShadowV2’s test run, Azure was hit with the “largest-ever” cloud-based DDOS attack, carried out by the Aisuru ...
Crowdfund Insider

Regtech SlowMist Analyzes Malicious Code Stealing Sensitive Keys, Private Information

Regtech firm SlowMist noted that recently, the NPM ecosystem experienced another large-scale package poisoning incident.

PostHog admits Shai-Hulud 2.0 was its biggest ever security bungle

PostHog says the Shai-Hulud 2.0 npm worm compromise was "the largest and most impactful security incident" it's ever experienced after attackers slipped malicious releases into its JavaScript SDKs and ...

Not degrees, Coursera CEO Greg Hart's advice to his sons to survive AI-era careers — Have micro credentials

According to Greg Hart, CEO of Coursera, in this AI age he advises his children and other graduates that it is not enough to ...

Public GitLab repositories exposed more than 17,000 secrets

After scanning all 5.6 million public repositories on GitLab Cloud, a security engineer discovered more than 17,000 exposed ...

Datadog’s 2025 State of Cloud Security Report Highlight Shift Toward Data Perimeter Adoption in Response to Credential Theft Threats

Although data perimeters are considered an advanced practice, over one-third of organisations have already adopted them Datadog, Inc. (NASDAQ: DDOG), the monitoring and security platform for cloud ...