Xygeni Blog

Must-Read Posts

npm Infostealer

New npm Infostealer Discovery: Nyx Stealer Hijacks Discord Sessions

Xygeni Launches MCP Server for AI Security in the IDE

Xygeni Launches MCP Server for AI Security in the IDE

Malicious npm Package

Malicious npm Package in Baileys Fork (Skyzopedia Case)

React2Shell - CVE-2025-55182 - RCE risk

React2Shell: CVE-2025-55182 and the Next.js RCE Risk

Shai hulud - npm packages - supply chain attack

Shai-Hulud: The npm Packages Worm Explained

Open Source Malicious Packages: The Problem

Open Source Malicious Packages: The Problem

npm Infostealer

Attacks Analysis

New npm Infostealer Discovery: Nyx Stealer Hijacks Discord Sessions

February 27, 2026

Xygeni Launches MCP Server for AI Security in the IDE

AI

Xygeni Launches MCP Server for AI Security in the IDE

February 26, 2026

Malicious npm Package

Attacks Analysis

Malicious npm Package in Baileys Fork (Skyzopedia Case)

February 25, 2026

Code Security

Mobile App Security with Swift and Kotlin SAST

February 20, 2026

allintextlogin filetypelog

Attacks Analysis

allintext:login filetype:log – How Exposed Logs Leak Credentials

February 18, 2026

vibe coding

AI

Vibe Coding Security: Why Traditional AppSec Breaks

February 13, 2026

Why We Built Known-Exploit Intelligence Fix What Attackers Actually Use

Open-Source Security

Known-Exploit Intelligence for Vulnerability Management

February 11, 2026

ASPM

DAST Meets ASPM: Closing the Gap Between Code and Runtime Exposure

February 4, 2026

AI

AI-Powered Malware Detection in SSCS

January 22, 2026

OWASP GenAI Security Project - generative AI security - gen AI security

AI

OWASP GenAI Security Project

January 20, 2026

Shai-Hulud 3.0 - npm Malware Worn - shai-hulud malware

Attacks Analysis

Shai-Hulud 3.0: npm Malware Worn

January 16, 2026

weak application security

Software Supply Chain

How Weak Application Security Creates Digital Privacy Risks

January 16, 2026