Blog Archive

Vulnerability Insights

Exploring extensions of dependency confusion attacks via npm package aliasing

November 4, 2021

Vulnerability Insights

JavaScript type confusion: Bypassed input validation (and how to remediate)

November 3, 2021

Cloud Security

Why the Facebook outage and Twitch breach matter to business leaders

October 14, 2021

Vulnerability Insights

SnykCon 2021 recap #2: Supply chain security, the future of cybersecurity, automation as an enabler, and more

October 8, 2021

Vulnerability Insights

Detect and prevent dependency confusion attacks on npm to maintain supply chain security

September 13, 2021

Vulnerability Insights

How Snyk Social Trends help you fix essential security vulnerabilities

August 18, 2021

Vulnerability Insights

Announcing Social Trends: Use social media for security intelligence

July 28, 2021

Vulnerability Insights

5 ways to prevent PHP code injection

June 29, 2021

Vulnerability Insights

Mitigating and remediating intent-based Android security vulnerabilities

June 2, 2021

Vulnerability Insights

Hunting intent-based Android security vulnerabilities with Snyk Code

May 27, 2021

Vulnerability Insights

Deep dive into Visual Studio Code extension security vulnerabilities

May 26, 2021

Vulnerability Insights

Snyk takes on responsibility for Node.js ecosystem vulnerability disclosure program

May 25, 2021

Vulnerability Insights

Exploring intent-based Android security vulnerabilities on Google Play

May 18, 2021

Vulnerability Insights

SuiteCRM: PHAR deserialization vulnerability to code execution

May 7, 2021

Vulnerability Insights

Snyk uncovers malicious code activities in open source supply chain security on the npm registry

May 5, 2021

Vulnerability Insights

Snyk’s new vulnerability cards - fix issues fast with a new look and feel

March 2, 2021

Vulnerability Insights

SolarWinds Orion Security Breach: A Shift In The Software Supply Chain Paradigm

March 2, 2021

Vulnerability Insights

Cache poisoning in popular open source packages

January 18, 2021

Vulnerability Insights

What is typosquatting and how typosquatting attacks are responsible for malicious modules in npm

January 12, 2021

Vulnerability Insights

Golang security: access restriction bypass vulnerability in JWT

December 22, 2020

Vulnerability Insights

Command injection: how it works, what are the risks, and how to prevent it

November 25, 2020