Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to ...
The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...
During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...
CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across ...
Files on a central cloud server used by the ransomware group highlight a systematic, aggressive attack on network backups as ...
As hundreds of vendors descend on San Francisco for the RSAC 2026 Conference, the sheer volume of news can be overwhelming.
A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, ...
The US cybersecurity agency CISA has flagged a critical code injection flaw in Langflow, the open-source visual framework widely used to build AI agent ...
The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...
With the arrival of the Base44 vibe-coding platform, natural language could be the new language of software development.
Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results