Blog Archivo

Seguridad de la cadena de suministro

lightning PyPI Compromise: A Bun-Based Credential Stealer in Python

30 de abril de 2026

Seguridad de la cadena de suministro

"A Mini Shai-Hulud Has Appeared": Bun-Based Stealer Hits SAP @cap-js and mbt npm Packages

29 de abril de 2026

Seguridad de la aplicación

Don't Panic: The Thymeleaf Template Injection That Only Hurts If You Let It (CVE-2026-40478)

29 de abril de 2026

Seguridad de la aplicación

Qinglong task scheduler RCE vulnerabilities exploited in the wild for cryptomining

27 de abril de 2026

IA

JPMorgan Just Published a Cyber To-Do List and Snyk Covers 8 of the 10 Items. How do you stack up?

23 de abril de 2026

IA

Governing Security in the Age of Infinite Signal – From Discovery to Control

10 de abril de 2026

IA

Secure What Matters: Scaling Effortless Container Security for the AI Era

7 de abril de 2026

IA

You Patched LiteLLM, But Do You Know Your AI Blast Radius?

2 de abril de 2026

IA

Building AI Security with Our Customers: 5 Lessons from Evo’s Design Partner Program

1 de abril de 2026

IA

The 5 Principles of Snyk’s Developer Experience

26 de marzo de 2026

IA

How a Poisoned Security Scanner Became the Key to Backdooring LiteLLM

24 de marzo de 2026

IA

I Read Cursor's Security Agent Prompts, So You Don't Have To

17 de marzo de 2026

IA

Securing the Agent Skills Registry: How Snyk and Tessl Are Setting the Standard

17 de marzo de 2026

IA

How “Clinejection” Turned an AI Bot into a Supply Chain Attack

19 de febrero de 2026

IA

Snyk and Cline: Securing the Future of Autonomous Coding

18 de febrero de 2026

IA

Weaving Security into the Flow: New Snyk Studio Capabilities Power the AI Security Fabric

17 de febrero de 2026

IA

The Future of AI Agent Security Is Guardrails

12 de febrero de 2026

IA

Exploitability Isn’t the Answer. Breakability Is.

12 de febrero de 2026

IA

Why Your “Skill Scanner” Is Just False Security (and Maybe Malware)

11 de febrero de 2026

IA

280+ Leaky Skills: How OpenClaw & ClawHub Are Exposing API Keys and PII

5 de febrero de 2026

IA

Snyk Finds Prompt Injection in 36%, 1467 Malicious Payloads in a ToxicSkills Study of Agent Skills Supply Chain Compromise

5 de febrero de 2026

IA

ServiceNow's Virtual Agent Vulnerability Shows Why AI Security Needs Traditional AppSec Foundations

14 de enero de 2026

IA

Beyond Detection: Building a Resilient Software Supply Chain (Lessons from the Shai-Hulud Post-Mortem)

8 de enero de 2026

Seguridad de la aplicación

The Holiday Whisper: Shai-Hulud 3.0

29 de diciembre de 2025