A new malware dubbed GhostClaw is targeting crypto wallets on macOS machines. The fake OpenClaw installer captures private ...

Audit identifies credential harvesting, C2 callbacks, and data exfiltration patterns across 18.7% of the most popular ...

A massive, self-replicating GlassWorm supply-chain attack has compromised hundreds of code repositories and extensions on ...

Attackers have hijacked 75 of 76 GitHub Actions tags for Aqua Security's Trivy scanner, distributing credential-stealing ...

A large-scale GlassWorm malware campaign targeting developer platforms appears to be significantly more extensive and ...

A malicious Python package masquerading as a legitimate Telegram development tool has been identified as a vehicle for remote ...

Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

The actor plays a molecular biologist trying to help save the world in this upbeat science-fiction fantasy from Phil Lord and ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...