SessionReaper: Critical Magento & Adobe Commerce Vulnerability (CVE-2025-54236)
Adobe Commerce and Magento Open Source have been hit by a vulnerability called SessionReaper (CVE-2025-54236). This…
The npm “chalk/debug” compromise: what happened, who’s exposed, and how to clean it up
Attackers phished a well-known npm maintainer (Qix-). With that access, they pushed malicious updates to 18+…