Crate.io

Malicious Rust packages targeted Web3 developers

December 4, 2025

A malicious Rust crate (package) named evm-units, aimed at stealing cryptocurrency from unsuspecting developers, has been pulled from the official public package registry for …

When transparency is also obscurity: The conundrum that is open-source security

October 4, 2022

Open-source software (OSS) has a lot of advocates. After all, why would we continuously try and write code that solves problems that others have already solved? Why not share …

Resources

CIS Benchmarks March 2026 Update
Download: 2026 SANS Identity Threats & Defenses Survey
Webinar: The True State of Security 2026

Don't miss

Even cybersecurity researchers are exposing secrets in their arXiv LaTeX source
Cyber crooks got Robinhood to send phishing emails to its own users
Attackers use MS Teams, fake mailbox repair utility to breach organizations
The AI criminal mastermind is already hiring on gig platforms
Indirect prompt injection is taking hold in the wild

Crate.io

Malicious Rust packages targeted Web3 developers

When transparency is also obscurity: The conundrum that is open-source security

Featured news

Resources

Don't miss