Research & Reporting

Research,
reported.

Selected work from BleepingComputer, CSO Online, WIRED, Manifold Security, Sonatype, Ars Technica, and TechCrunch.

Scroll

A selection of research and reporting across the past five years — malware analyses, supply chain investigations, and cybercrime coverage published across cybersecurity's leading outlets. Grouped by publication. For the full archive on any outlet, follow the byline links.

Manifold Security
AI agent security research from the R&D function. MCP servers, agent skills, supply chain integrity.
Manifold
One AI security scanner flagged 40% of Skills as malicious. Most were fine.
2026
Manifold
Two Git commands fooled Claude into merging malicious code
2026
Manifold
30 ClawHub Skills are quietly recruiting your AI agent into a crypto swarm
2026
Manifold
An OpenClaw Skill with an SVG can steal your cookies
2026
View all on Manifold →
BleepingComputer
Breaking cybersecurity reporting, novel malware analyses, and exclusives on data breaches and supply chain attacks.
BleepingComputer
Exclusive: Target's dev server offline after hackers claim to steal source code
Jan 2026
BleepingComputer
Canada Goose investigating as hackers leak 600K customer records
Feb 2026
BleepingComputer
Booking.com phishing campaign uses sneaky 'ん' character to trick you
2025
BleepingComputer
GitLab affected by GitHub-style CDN flaw allowing malware hosting
2024
BleepingComputer
Convincing Twitter 'quote tweet' phone scam targets bank customers
2023
BleepingComputer
First report: Researcher hacks over 35 tech firms in novel supply chain attack
Feb 2021
View all on BleepingComputer →
CSO Online
Long-form analysis and thought leadership for security leaders — AI safety, supply chain attacks, and defender tradecraft.
CSO Online
When AI safety constrains defenders more than attackers
2026
CSO Online
Polymorphic AI malware exists — but it's not what you think
2025
CSO Online
Modern supply-chain attacks and their real-world impact
2025
CSO Online
How defenders use the dark web
2025
CSO Online
Software supply chain attacks explained
2023
View all on CSO Online →
Sonatype
120+ technical analyses on open source supply chain threats. Selected work from a five-year archive.
Sonatype
Revived CryptoJS library is a crypto stealer in disguise
Apr 2025
Sonatype
Multiple crypto packages hijacked, turned into info-stealers
Mar 2025
Sonatype
Fake VS Code extension on npm uses altered ScreenConnect utility as spyware
Feb 2025
Sonatype
Lottie Player compromised in supply chain attack — all you need to know
2024
Sonatype
npm packages from rspack, vant compromised, blocked by Sonatype
2024
Sonatype
Counterfeit ESLint and Node 'types' libraries downloaded thousands of times abuse Pastebin
2024
Sonatype
A Russian hacker is selling 250+ npm exploits on Telegram
2024
Sonatype
Counterfeit Lodash attack leverages AnyDesk to target Windows users
Oct 2024
Sonatype
Crypto enthusiasts flood npm with more than 281,000 bogus packages overnight
Aug 2024
Sonatype
Damaging Linux and Mac malware bundled within Browserify npm brandjack attempt
Apr 2021
Sonatype
First report: Dependency hijacking software supply chain attack hits more than 35 organizations
Feb 2021
View all on Sonatype →
Ars Technica
Technical reporting on infrastructure vulnerabilities, vendor disclosures, and breach investigations.
Ars Technica
Exclusive: new Azure Active Directory password brute-forcing flaw has no fix
2021
Ars Technica
PoC exploit released for Azure AD brute-force bug — here's what to do
2021
Ars Technica
Verizon's Visible Wireless investigating hacked customer accounts
2021
Ars Technica
Researcher refuses Telegram's bounty award, discloses auto-delete bug
2021
WIRED
Investigative reporting on cybercrime and consumer-facing security risks.
WIRED
How your real flight reservation can be used to scam you
2023
WIRED
Hollywood's fight against VPNs turns ugly
2022
Socket
Independent security research on open source ecosystem abuse.
Socket
These Chinese devs are storing 1000s of eBooks on GitHub and npm
Nov 2022
TechCrunch
Reporting on developer-community security incidents.
TechCrunch
The rise of 'protestware': open source code as political weapon
2022
Get in touch

Media, speaking
& research enquiries.

Available for commentary, broadcast appearances, and keynotes — ax [at] axsharma.com
Have a tip or story lead? Send it via BleepingComputer's tip line (Attn: Ax).

LinkedIn Bluesky X / Twitter YouTube