New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
Security Boulevard

SAML vs OIDC vs OAuth 2.0: 12 Differences Every B2B Engineering Team Should Know

Choosing between SAML, OIDC, and OAuth 2.0? Explore 12 critical differences to help your B2B engineering team select the right authentication protocol today.

Over 800 Android Apps Targeted in PIN-Stealing Trojan Campaign

Four Android banking malware campaigns are targeting more than 800 apps by abusing overlays, Accessibility permissions, and ...

MCP Dev Summit Solutions Showcase

The MCP Dev Summit featured more than 50 sponsors offering MCP and related agentic AI products for the enterprise.
GitHub

A Node.js/TypeScript Model Context Protocol (MCP) server for Atlassian Bitbucket Server/Data Center.

This server enables AI systems (e.g., LLMs, AI coding assistants) to securely interact with your self-hosted Bitbucket repositories, pull requests, projects, and code in real time through both ...