The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.

pgEdge MCP Server for Postgres Now Generally Available, Including in pgEdge Cloud, Advancing Enterprise AI Infrastructure

Edge, the leading open source enterprise Postgres company, today announced general availability (GA) of the pgEdge MCP Server ...

Elastic Is Not A SaaS Company - Wall Street Hasn't Figured That Out Yet

Elastic is mispriced as a legacy log tool, despite being critical infrastructure for enterprise AI and security workloads.
MarketWatch

The Postgres(R) Vitality Index: Enterprises Rush to Postgres, and EDB Continues to Lead the Foundation for Sovereign Enterprise AI

The MarketWatch News Department was not involved in the creation of this content. Postgres has won. As hyperscalers double down, EDB maintains dominance with over 30% of key contributions in the first ...
The Hacker News

The State of Trusted Open Source Report

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
SecurityWeek

Guardarian Users Targeted With Malicious Strapi NPM Packages

A threat actor has used 36 malicious NPM packages posing as Strapi plugins to distribute malware targeting Redis, Docker, and ...
NewsBytes

Supabase reportedly seeks about $500 million to double valuation to $10B

Singapore's sovereign wealth fund, GIC, is reportedly leading an investment round in open-source database startup Supabase, ...
Redmondmag.com

From Fabcon to MVP Summit: The Biggest SQL Server and Fabric Updates

Recent SQL Server 2025, Azure SQL, SSMS 22 and Fabric announcements highlight new event streaming and vector search capabilities, plus expanding monitoring and ontology tooling -- with tradeoffs in ...
Infosecurity Magazine

Fortinet Releases Emergency Patch After FortiClient EMS Bug Is Exploited

Fortinet customers have been urged to update their FortiClient Enterprise Management Server (EMS) products after the vendor ...