Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide. This analysis walks through the Trivy supply‑chain compromise, attacker ...

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of ...

Supply chain attacks feel like they're becoming more and more common.

The infostealer uses a first‑seen‑in‑the‑wild debugging method to extract Chrome’s decryption key without privilege escalation, raising concerns about the future of browser data security.

In addition to rolling out patches to address two zero-days affecting SQL Server and .NET, Microsoft introduced Common Log ...

Python libraries for cybersecurity help automate threat detection, network monitoring, and vulnerability analysis. Tools like Scapy, Nmap, and Requests enable penetration testing and network security ...

Abstract: In everyday life, it is crucial to protect our data and communication. The necessity for secure message communication is not a novel concept. It has existed for a long time. Data security ...

BAR (Burn After Reading) is my project to showcase skills in security, cryptography, and logic design. It’s an offline desktop app for sensitive file management with encryption and self-destruction ...

Authenticated PNG image encryption tool using PBKDF2 key derivation and HMAC-SHA256 integrity verification to prevent wrong-password corruption. A unified Python desktop application for file ...