Supply chain attacks feel like they're becoming more and more common.

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

The GlassWorm malware made news when it pivoted from exclusively targeting Windows users to also targeting Mac OS users in January, and in the time since, the malware campaign has spread across at ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

Protecting your digital assets from brute force attacks is critical in today's cyber landscape. Learn from experts how to ...

Yaroslav has a background in building large-scale security systems and has held leadership roles at Netskope and Arbor ...

Opening ports felt normal until I saw who was knocking.

A threat actor used the open source security tool to breach CI/CD workflows and steal cloud credentials, SSH keys, and other ...

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

TeamPCP is the likely cyber threat actor behind attacks on Trivy, Checkmarx, and the LiteLLM AI library — and all signs point ...