%term

The Hallucinated Package Attack: Slopsquatting

Aug 15, 2025 By Mend.io Team In Mend

Imagine a world where, in the middle of programming, your helpful AI assistant tells you to import a package called securehashlib. It sounds real. It looks real. You trust your silicon co-pilot. You run pip install securehashlib. Congratulations. You’ve just opened a backdoor into your software stack—and possibly your company’s infrastructure. The package didn’t exist until yesterday, when an attacker registered it based on a hallucination the AI made last week.

Read Post

Mend

Read more about The Hallucinated Package Attack: Slopsquatting

The Rules Have Changed AI vs AI #aisecurity #ai

Aug 15, 2025 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about The Rules Have Changed AI vs AI #aisecurity #ai

The Two AI Licenses You Need to Know

Aug 14, 2025 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about The Two AI Licenses You Need to Know

Claude Opus 4.1 and Github Copilot Causes a Coding Error

Aug 14, 2025 By Snyk In Snyk

Claude Opus 4.1 and Github Copilot Causes a Coding Error.

View Video

Snyk

Read more about Claude Opus 4.1 and Github Copilot Causes a Coding Error

Snowflake on why leaked secrets make DevOps suffer and how to deal with this #NHI #secrets #devops

Aug 14, 2025 By GitGuardian In GitGuardian

View Video

GitGuardian

Read more about Snowflake on why leaked secrets make DevOps suffer and how to deal with this #NHI #secrets #devops

DevOps Security - Best Data Protection Practices

Aug 13, 2025 By Daria Kulikova In GitProtect

DevOps has already become an integrated part of almost every industry and its development process. Whether it’s technology, automotive, healthcare, or any other industry, it’s hard to imagine an organization that doesn’t rely on DevOps. Numbers speak better: the majority of consumers are from the technology sector – 44%, yet there are a lot of organizations from other industries that depend on DevOps – financial, education, etc.

Read Post

GitProtect

Read more about DevOps Security - Best Data Protection Practices

Your AI Could Hack You #cybersecuritytips

Aug 13, 2025 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about Your AI Could Hack You #cybersecuritytips

ISO 27001:2022 Requirements Explained for 2025

Aug 13, 2025 By Jack Pitts In Teleport

ISO/IEC 27001:2022 provides a framework for managing information security using an Information Security Management System (ISMS). The October 2025 deadline to upgrade from the previous ISO 27001:2013 standard is coming fast, and organizations yet to transition risk losing their certification. Maintaining ISO/IEC 27001 certification is especially relevant for regulated industries, SaaS providers with enterprise customers, and global organizations handling sensitive data.

Read Post

Teleport

Read more about ISO 27001:2022 Requirements Explained for 2025

Claude Opus 4.1 & Copilot: The ULTIMATE Coding Combo?

Aug 13, 2025 By Snyk In Snyk

Claude Opus 4.1 & Copilot: The ULTIMATE Coding Combo?

View Video

Snyk

Read more about Claude Opus 4.1 & Copilot: The ULTIMATE Coding Combo?

The Key to Building Security Programs That Truly Scale #developer #appsec

Aug 12, 2025 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about The Key to Building Security Programs That Truly Scale #developer #appsec

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Hallucinated Package Attack: Slopsquatting

The Rules Have Changed AI vs AI #aisecurity #ai

The Two AI Licenses You Need to Know

Claude Opus 4.1 and Github Copilot Causes a Coding Error

Snowflake on why leaked secrets make DevOps suffer and how to deal with this #NHI #secrets #devops

DevOps Security - Best Data Protection Practices

Your AI Could Hack You #cybersecuritytips

ISO 27001:2022 Requirements Explained for 2025

Claude Opus 4.1 & Copilot: The ULTIMATE Coding Combo?

The Key to Building Security Programs That Truly Scale #developer #appsec

Monthly Archive

Follow Us