Socket found a compromised Injective npm package stealing wallet keys amid rising crypto supply chain attacks.
Hackers are actively exploiting a critical vulnerability in the official Docker image for the Gitea self-hosted Git service ...
Unknown attackers compromised Injective Labs' GitHub repo to publish npm package 1.20.21, which steals wallet private keys ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
Anthropic’s AI-run espionage report shows why enterprises need stronger governance for AI agents, MCP connectors, and ...
China-linked Silver Fox deploys the Rust-based MODBEACON RAT through fake software installers, targeting technology, ...