Xygeni Blog

Must-Read Posts

SeedSweep: Ten Malicious npm Crypto Packages

SeedSweep: Ten Crypto-Themed npm Packages That Only Run When No One Is Watching

PairLoop: Hidden Remote-Control Panel in npm Package

PairLoop: One npm Package, Seventy Versions, and a Hidden Windows Remote-Control Panel

ConsentMask The npm Package Hiding Developer Identity Harvesting

ConsentMask: An npm Package That Wears a Telemetry Consent Banner Over Developer-Identity Harvesting

JulesJacker: Fake npm Worm Impersonates Jules AI

JulesJacker: A Fake-PoC npm Worm That Impersonates Google’s Jules Agent — and Turns on the Sandbox Analyzing It

RuntimeBroker npm Typosquat Plants Crypto Clipper

RuntimeBroker: an npm Typosquat Plants a 40-Chain Crypto-Clipper as a Cross-OS \”System Runtime Helper”\

AuditorTrap

AuditorTrap: A 22-Package Fake Crypto Security Guild on npm With Two Parallel Payloads

error: gpg check failed - error: gpg failed to sign the data - gpg error

CI CD Security

Why Error: GPG Check FAILED in Your Build (and How to Fix It Securely)

October 2, 2025

azure security - microsoft azure security - azure security best practices

IaC

Microsoft Azure Security FAQ

October 1, 2025

ldap port - ldap group - ldap bind operation

Secrets Security

LDAP Port Misconfigs: How Groups and Bind Operations Break App Security

October 1, 2025

cyber threat hunting - threat hunter

CI CD Security

Threat Hunting with Code: How to Track Malicious Patterns in Repos

October 1, 2025

SQL vulnerability - SQL injection vulnerability - SQL injection vulnerability scanner

Code Security

SQL Vulnerability: Detect and Prevent Attacks

September 30, 2025

cybersecurity as a service - cybersecurity as a service caas -cybersecurity as a service companies

SDLC

Cybersecurity as a Service in DevSecOps

September 30, 2025

has been pwned - pwned checker - secrets detection

Secrets Security

What “Has Been Pwned” Really Means for Developers

September 30, 2025

CI CD Security

Different Types of Security Tags and How to Remove Them Safely

September 30, 2025

laravel 11.30.0 exploit - laravel exploit - laravel 11.30.0 vulnerabilities

CI CD Security

Laravel 11.30.0 Exploit: What Devs Must Patch Now

September 29, 2025

session hijacking prevention - session hijack

CI CD Security

Session Hijacking: The Code and Config Mistakes That Open the Door

September 29, 2025

bash set -e - set -e bash

Anomaly Detection

set -e in Bash: Why Your Script Fails Without Warning

September 26, 2025

intrusion detection system - intrusion detection systems - intrusion and detection system

Anomaly Detection

Intrusion Detection System: What Devs Need Beyond Logs

September 25, 2025