Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

AI startup was blacklisted after refusing to allow its technology to be used for autonomous weapons or domestic surveillance ...

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

When Canada’s prudential regulator, OFSI, released Guideline B 15 on climate risk, much of the industry conversation centred on governance, disclosure templates and model risk. But behind the ...

Half a dozen vulnerabilities in the JavaScript ecosystem’s leading package managers — including NPM, PNPM, VLT, and Bun — could be exploited to bypass supply chain attack protections, according to ...

SCOPE Recruiting, a premier firm of supply chain recruiters focused on manufacturing and logistics, has launched The Scope Partnership Blueprint, a process-driven hiring framework that is designed to ...

A critical misconfiguration in Amazon Web Services (AWS) CodeBuild could have allowed complete takeover of the cloud service provider's own GitHub repositories, including its AWS JavaScript SDK, ...

The Nature Index 2025 Research Leaders — previously known as Annual Tables — reveal the leading institutions and countries/territories in the natural and health sciences, according to their output in ...

Abstract: Depending on the position of an electronics company in the supply chain, the majority of greenhouse gas emissions attributable to its products may be generated in its upstream supply chains ...