In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
Socket found a compromised Injective npm package stealing wallet keys amid rising crypto supply chain attacks.
GhostLock (CVE-2026-43499) is a 15-year-old Linux kernel vulnerability that allows attackers to gain root privileges.
Criminals no longer need hacking skills to target your bank account. A cheap rental kit is fueling a wave of these scams.