After CVE-2025-3928 was exploited as a zero-day, Commvault shares attack details, IoCs, and best practices to lock down systems.

XRP holders have been targeted in “a potentially catastrophic” exploit. Efforts to identify the bad actor are underway. The ...

xrpl.js is a popular JavaScript API for interacting with the XRP Ledger blockchain, also called the Ripple Protocol, a ...

XRP's xrpl.js library was compromised in a supply chain attack, exposing private keys. Ripple urges immediate update to ...

Verizon Business has released the 2025 edition of the Data Breach Investigations Report (DBIR), its 18th-annual report on ...

Cybercriminals are increasingly using vulnerable companies to target their partners and peers The number of third-party incidents doubled year-on-year, Verizon's new report shows The attacks are used ...

Slopsquatting and vibe coding are fueling a new wave of AI-driven cyberattacks, exposing developers to hidden risks through ...

Targeting NPM is an increasingly popular method of launching supply chain attacks for cybercriminals, primarily because of ...

On April 22, the XRP Ledger Foundation issued an urgent security warning regarding a critical vulnerability in its official ...

A security crisis was avoided after a hacker exploited a developer’s access token to inject malicious code into a toolkit ...

Aikido, a security platform for developers, said that the XRP Ledger (XRPL), which powers the XRP token, NPM package, was ...

Ripple's xrpl.js package breach threatens DeFi wallets on XRP. No major thefts reported, and Ripple has deprecated the compromised version.