Blog | ReversingLabs

Featured

April 16, 2025

The cybersecurity job market is complicated: 3 key insights

While the state of cyber careers is confusing, key trends are driving companies to think bigger picture — and outside of traditional roles.

April 10, 2025

Atomic and Exodus crypto wallets targeted in malicious npm campaign

RL researchers have identified yet another npm package that uses malicious patching of local software to hijack cryptocurrency transfers.

April 16, 2025

The cybersecurity job market is complicated: 3 key insights

While the state of cyber careers is confusing, key trends are driving companies to think bigger picture — and outside of traditional roles.

April 15, 2025

Quantum delivers really random numbers: How that boosts AppSec

Quantum random number generators can make software — including software development secrets — more secure. Here's how it works.

April 10, 2025

Atomic and Exodus crypto wallets targeted in malicious npm campaign

RL researchers have identified yet another npm package that uses malicious patching of local software to hijack cryptocurrency transfers.

April 9, 2025

Vibe coding: What automating development means for AppSec

Between AI coding and "vibe coding" – prompt engineering AI coding – AppSec is going to be challenging. Here's what you need to know.

April 8, 2025

The race to secure the AI/ML supply chain is on — get out front

Supply chain risks from artificial intelligence (AI) and machine learning (ML) are getting real. Here are key insights from RL’s new report.

April 3, 2025

Malicious Python packages target popular Bitcoin library

RL researchers detected two Python libraries that are designed to steal sensitive data while posing as fixes for a popular cryptocurrency library.

April 2, 2025

CVEs lose relevance: Get proactive — and think beyond vulnerabilities

More cracks in the NVD emerge, making the CVE system less useful. Shift your approach to keep up with software risk.

April 1, 2025

OpenSSF guidelines encourage OSS developers to build securely

The Open Source Secure Baseline provides a framework for securing OSS development — but it could breed complacency. Here's what you need to know.

March 27, 2025

AI coding tools weaponized: What your AppSec team needs to know

The "Rules File Backdoor" attack method is pernicious — and one that can be easily exploited with the rise of "vibe coding" and agentic AI.

March 26, 2025

Malware found on npm infecting local package with reverse shell

For the first time, RL researchers discover malicious locally-installed npm packages infecting other legitimate packages.

March 25, 2025

Crypto malware attacks: 23 supply chain incidents set off alarms

Target on back-alert: Open source was increasingly exploited in attacks on cryptocurrency infrastructure and apps in 2024.

March 20, 2025

CISO survey: 6 lessons to boost third-party cyber-risk management

Risk is rising across the software supply chain while visibility remains low, making TPCRM challenging. Here's what you need to know.

next ›

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

Featured

The cybersecurity job market is complicated: 3 key insights

Atomic and Exodus crypto wallets targeted in malicious npm campaign

Latest

The cybersecurity job market is complicated: 3 key insights

Quantum delivers really random numbers: How that boosts AppSec

Atomic and Exodus crypto wallets targeted in malicious npm campaign

Vibe coding: What automating development means for AppSec

The race to secure the AI/ML supply chain is on — get out front

Malicious Python packages target popular Bitcoin library

CVEs lose relevance: Get proactive — and think beyond vulnerabilities

OpenSSF guidelines encourage OSS developers to build securely

AI coding tools weaponized: What your AppSec team needs to know

Malware found on npm infecting local package with reverse shell

Crypto malware attacks: 23 supply chain incidents set off alarms

CISO survey: 6 lessons to boost third-party cyber-risk management

Topics

Special Reports

The 2025 Software Supply Chain Security Report

Upcoming Webinars

ConversingLabs

Featured

Latest

Topics

Follow us

Subscribe

Special Reports