Koi Blog | Latest on Endpoint Protection & Software Governance

Featured

When Claude Becomes a Cyber-Weapon: The AI Arms Race Has Begun

Idan Dardikman

,

,

November 14, 2025

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

First Malicious MCP in the Wild: The Postmark Backdoor That's Stealing Your Emails

Idan Dardikman

,

,

September 25, 2025

WhiteCobra's Playbook Exposed: Critical Mistake Reveals 24-Extension Campaign Targeting VS Code and Cursor

Yuval Ronen

,

,

September 13, 2025

Koi Raises $48M to Reinvent Endpoint Security for the Modern Software Stack

Amit Assaraf

,

,

September 10, 2025

The Package Poisoner: How 2.5 Billion Weekly Downloads Were Compromised in npm's Largest Supply Chain Attack

Idan Dardikman

,

Yuval Ronen

,

September 8, 2025

SpyVPN: The Google-Featured VPN That Secretly Captures Your Screen

Lotan Sery

,

,

August 19, 2025

GreedyBear: 650 Attack Tools, One Coordinated Campaign

Tuval Admoni

,

,

August 8, 2025

Amazon’s AI Assistant Almost Nuked A Million Developer’s Production Environments

Idan Dardikman

,

,

July 25, 2025

Google and Microsoft Trusted Them. 2.3 Million Users Installed Them. They Were Malware.

Idan Dardikman

,

,

July 8, 2025

When Both Marketplaces Fall: The Cross-Platform Extension Malware Campaign

Amit Assaraf

,

,

July 2, 2025

Live Updates: Shai-Hulud, The Most Dangerous NPM Breach In History Affecting CrowdStrike and Hundreds of Popular Packages

Idan Dardikman

,

Yuval Ronen

,

September 16, 2025