In the News
The Latest Shai-Hulud Malware is Faster and More Dangerous

Security Boulevard: The Latest Shai-Hulud Malware is Faster and More Dangerous

Learn More about Security Boulevard: The Latest Shai-Hulud Malware is Faster and More Dangerous
Security Boulevard: The Latest Shai-Hulud Malware is Faster and More Dangerous

Bleeping Computer: Malicious VSCode Marketplace extensions hid trojan in fake PNG file

Learn More about Bleeping Computer: Malicious VSCode Marketplace extensions hid trojan in fake PNG file

Forbes: Microsoft Worm Attack Warning — Act Rapidly And Change Passwords Now

Learn More about Forbes: Microsoft Worm Attack Warning — Act Rapidly And Change Passwords Now
Forbes: Microsoft Worm Attack Warning — Act Rapidly And Change Passwords Now

Energy Pipeline Podcast: Software Supply Chain Security | EP 105

Supply Chain and Energy/Utilities

Learn More about Energy Pipeline Podcast: Software Supply Chain Security | EP 105
Energy Pipeline Podcast: Software Supply Chain Security | EP 105

SecurityWeek: Should cybersecurity leadership finally be professionalized?

The majority opinion is that a cybersecurity professional body is long overdue and would benefit cybersecurity and cybersecurity practitioners.

Learn More about SecurityWeek: Should cybersecurity leadership finally be professionalized?
SecurityWeek: Should cybersecurity leadership finally be professionalized?

CyberScoop: The dual reality of AI-augmented development: innovation and risk

AI coding is a big security problem when most security teams are still relying on tools designed for a world where human-written code remains prevalent.

Learn More about CyberScoop: The dual reality of AI-augmented development: innovation and risk
CyberScoop: The dual reality of AI-augmented development: innovation and risk

ReversingLabs CEO provides insights into DNC Hacks

Multi-layered payloads can yield clues to hacker identity and intentions when successfully unpacked and analyzed.

Learn More about ReversingLabs CEO provides insights into DNC Hacks
ReversingLabs CEO provides insights into DNC Hacks

Information Security Buzz: Commercial Software’s Seven Deadly Sins

At ReversingLabs, we’ve identified seven critical risks that plague commercial software, or what we call Commercial Software’s Seven Deadly Sins.

Learn More about Information Security Buzz: Commercial Software’s Seven Deadly Sins
Information Security Buzz: Commercial Software’s Seven Deadly Sins

Dark Reading: Hackers Post Dozens of Malicious Copycat Repos to GitHub

As package registries find better ways to combat cyberattacks, threat actors are finding other methods for spreading their malware to developers.

Learn More about Dark Reading: Hackers Post Dozens of Malicious Copycat Repos to GitHub
Dark Reading: Hackers Post Dozens of Malicious Copycat Repos to GitHub

The Hacker News: Malicious npm Package Modifies Local 'ethers' Library to Launch Reverse Shell Attacks

ReversingLabs' analysis of ethers-provider2 has revealed that it's nothing but a trojanized version of the widely-used ssh2 npm package.

Learn More about The Hacker News: Malicious npm Package Modifies Local 'ethers' Library to Launch Reverse Shell Attacks

SC Media: AI has become the supply chain

Microsoft Security’s artificial intelligence (AI) security team recently shared its findings from a multi-year study that involved red teaming 100 generative AI (GenAI) products.

Learn More about SC Media: AI has become the supply chain
SC Media: AI has become the supply chain

HelpNetSecurity: Malicious ML models found on Hugging Face Hub

Researchers have spotted two machine learning (ML) models containing malicious code on Hugging Face Hub, the popular online repository for datasets and pre-trained models.

Learn More about HelpNetSecurity: Malicious ML models found on Hugging Face Hub
HelpNetSecurity: Malicious ML models found on Hugging Face Hub

Dark Reading: Open Source AI Models: Perfect Storm for Malicious Code, Vulnerabilities

Companies pursing internal AI development using models from Hugging Face and other open source repositories need to focus on supply chain security and checking for vulnerabilities.

Learn More about Dark Reading: Open Source AI Models: Perfect Storm for Malicious Code, Vulnerabilities

CSO Online: Attackers hide malicious code in Hugging Face AI model Pickle files

The popular Python Pickle serialization format offers ways for attackers to inject malicious code that will be executed on computers when loading models with PyTorch.

Learn More about CSO Online: Attackers hide malicious code in Hugging Face AI model Pickle files
CSO Online: Attackers hide malicious code in Hugging Face AI model Pickle files

Infosecurity: Malicious AI Models on Hugging Face Exploit Novel Attack Technique

Researchers at Reversing Labs have discovered two malicious machine learning (ML) models available on Hugging Face, the leading hub for sharing AI models and applications.

Learn More about Infosecurity: Malicious AI Models on Hugging Face Exploit Novel Attack Technique
123...7Next
ReversingLabs: The More Powerful, Cost-Effective Alternative to VirusTotalSee Why

Spectra Assure Free Trial

Get your 14-day free trial of Spectra Assure for Software Supply Chain Security

Get Free TrialMore about Spectra Assure Free Trial
Blog
Events
About Us
Webinars
In the News
Careers
Demo Videos
Cybersecurity Glossary
Contact Us
reversinglabsReversingLabs: Home
Privacy PolicyCookiesImpressum
All rights reserved ReversingLabs © 2026
XX / Twitter
LinkedInLinkedIn
FacebookFacebook
InstagramInstagram
YouTubeYouTube
blueskyBluesky
RSSRSS
Back to Top
Bleeping Computer: Malicious VSCode Marketplace extensions hid trojan in fake PNG file
The Hacker News: Malicious npm Package Modifies Local 'ethers' Library to Launch Reverse Shell Attacks
Dark Reading: Open Source AI Models: Perfect Storm for Malicious Code, Vulnerabilities
Infosecurity: Malicious AI Models on Hugging Face Exploit Novel Attack Technique
Malicious VSCode Marketplace extensions hid trojan in fake PNG file
Microsoft Worm Attack Warning — Act Rapidly And Change Passwords Now
In-the-News-The-Energy-Pipeline-Sasa-Zdjelar
laptop screen displaying headline and subtitle of this article
tablet being held displaying news article
ReversingLabs CEO provides insights into DNC Hacks
tablet being held displaying news article
laptop displaying headline of this article
hands holding electronic tablet with article about npm hacker
laptop displaying headline "AI has become the supply chain"
phone screen displaying news article
tablet being held displaying news article
phone screen displaying news article
tablet being held displaying news article
Skip to main content
Contact UsSupportLoginBlogCommunity
reversinglabsReversingLabs: Home
Solutions
Secure Software OnboardingSecure Build & ReleaseProtect Virtual MachinesIntegrate Safe Open SourceGo Beyond the SBOM
Increase Email Threat ResilienceDetect Malware in File Shares & StorageAdvanced Malware Analysis SuiteICAP Enabled Solutions
Scalable File AnalysisHigh-Fidelity Threat IntelligenceCurated Ransomware FeedAutomate Malware Analysis Workflows
Products & Technology
Spectra Assure®Software Supply Chain SecuritySpectra DetectHigh-Speed, High-Volume, Large File AnalysisSpectra AnalyzeIn-Depth Malware Analysis & Hunting for the SOCSpectra IntelligenceAuthoritative Reputation Data & Intelligence
Spectra CoreIntegrations
Industry
Energy & UtilitiesFinanceHealthcareHigh TechPublic Sector
Partners
Become a PartnerValue-Added PartnersTechnology PartnersMarketplacesOEM Partners
Alliances
Resources
BlogContent LibraryCybersecurity GlossaryConversingLabs PodcastEvents & WebinarsLearning with ReversingLabsWeekly Insights Newsletter
Customer StoriesDemo VideosDocumentationOpenSource YARA Rules
Company
About UsLeadershipCareersSeries B Investment
EventsRL at RSAC
Press ReleasesIn the News
Pricing
Software Supply Chain SecurityMalware Analysis and Threat Hunting
Menu
Request a demo