Xygeni Blog

Must-Read Posts

SeedSweep: Ten Malicious npm Crypto Packages

SeedSweep: Ten Crypto-Themed npm Packages That Only Run When No One Is Watching

PairLoop: Hidden Remote-Control Panel in npm Package

PairLoop: One npm Package, Seventy Versions, and a Hidden Windows Remote-Control Panel

ConsentMask The npm Package Hiding Developer Identity Harvesting

ConsentMask: An npm Package That Wears a Telemetry Consent Banner Over Developer-Identity Harvesting

JulesJacker: Fake npm Worm Impersonates Jules AI

JulesJacker: A Fake-PoC npm Worm That Impersonates Google’s Jules Agent — and Turns on the Sandbox Analyzing It

RuntimeBroker npm Typosquat Plants Crypto Clipper

RuntimeBroker: an npm Typosquat Plants a 40-Chain Crypto-Clipper as a Cross-OS \”System Runtime Helper”\

AuditorTrap

AuditorTrap: A 22-Package Fake Crypto Security Guild on npm With Two Parallel Payloads

Single Responsibility Principle - single principle - solid programming principles

Code Security

Why the Single Responsibility Principle Matters for Secure Code?

July 22, 2025

Sniffing Application - packet sniffer - sniffing attack

Code Security

Sniffing Application: A Hidden DevSecOps Supply Chain Risk

July 22, 2025

barracuda attack - RCE exploit - barracuda email security gateway

Code Security

Barracuda Attack: What It Means for Your CI/CD Security?

July 22, 2025

what is the advice given for applying security by obscurity - security through obscurity

Code Security

What Is the Advice Given for Applying Security by Obscurity?

July 21, 2025

Define Hacking - what is a hack - notable hacking incidents

Code Security

Define Hacking: What Dev Teams Need to Know About Real-World Attacks

July 19, 2025

bugging meaning - Wiretapping - advanced persistent attack

Code Security

Bugging Meaning in DevSecOps: From Debugging to Malicious Surveillance

July 18, 2025

Open-Source Security

7 Best Practices for Disclosing Open Source Components to Customers

July 18, 2025

how to get into cybersecurity - entry-level cybersecurity jobs - cybersecurity roadmap

Code Security

How to Get Into Cybersecurity Without Leaving Dev Behind?

July 17, 2025

remote code execution - what is remote file inclusion

Code Security

Remote File Inclusion: How It Happens and How Developers Can Prevent It?

July 16, 2025

How to Get Rid of Malware

Code Security

How to Get Rid of Malware in Your Codebase and Pipelines

July 15, 2025

GitHub Security - GitHub Advanced Security

CI CD Security

GitHub Security FAQs: What Every Developer Should Know

July 14, 2025

vibe coding, vibe code, what is vibe coding, vibe cooding tools.

Code Security

Vibe Coding: Trend or Security Risk?

July 9, 2025