In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to ...
Sophos says Claude Code, Cursor, and Codex triggered Windows endpoint rules for credential access, LOLBin downloads, and ...
Rogue Agent, a vulnerability in Google Cloud Dialogflow CX, allowed attackers to control agents and exfiltrate sensitive data.
ESET Research has released its H1 2026 Threat Report with statistics from December 2025 through May 2026.ClickFix – a social engineering ...
Nextcloud exposed 367,000 internal records after a hosting misconfiguration left an Elasticsearch database publicly accessible. The leaked files included invoices, contracts, employee details, emails, ...
A threat group researchers call "Armored Likho" has gained access to government agencies and electrical power entities in ...
The FBI warned that TeamPCP software supply chain attacks targeted developer tools to steal cloud credentials, SSH keys, and ...
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results