Cybersecurity Help is a global vulnerability intelligence provider. We monitor vulnerabilities in software from 60,000+ vendors and help customers prevent potential data breaches by addressing them proactively.
Request DemoThe hackers hijacked the npm account of the library's developer and inserted a malicious dependency into the package configuration.
3 min readHe now faces up to 10 years in prison on a computer fraud charge and up to 20 years if convicted of money laundering.
2 min readThe investigation began when the researchers examined activity linked to the Stately Taurus group that leveraged USB-based malware called USBFect, aka HIUPAN.
3 min readThe leak reportedly includes personal messages dating back to 2010 and 2019, as well as images allegedly taken from Patel’s account.
2 min readThe flaw, tracked as CVE-2026-21643, allows unauthenticated attackers to execute arbitrary code on vulnerable systems.
2 min read