The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

Researchers have finally cracked Fast16, mysterious code capable of silently tampering with calculation and simulation ...

Scammers built a convincing fake Windows update site that installs password-stealing malware. Learn how the multi-stage ...

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

Hackers are exploiting a recent accidental source code leak from Anthropic to spread Vidar infostealer malware via fake GitHub repositories. These malicious sites have even managed to appear in top ...

A WIRED investigation based on Department of Homeland Security records this week revealed the identities of paramilitary Border Patrol agents who frequently used force against civilians during ...

Infiniti Stealer is a new tool that hackers are using to target Mac users.

A newly uncovered malware campaign is combining ClickFix delivery with AI generated evasion techniques to steal enterprise user accounts and passwords. The attacks are designed to provide intruders ...

A large-scale malware campaign is targeting developers on GitHub, using fake Visual Studio Code security alerts to trick users into downloading malicious payloads and exposing system data. According ...

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-stealing malware hidden inside a WAV file. Earlier today, the ...

This project focuses on utilizing advanced techniques such as graph reduction, contrastive learning, and large language model (LLM) embeddings to enhance the detection of malware in Android ...