Hackers are actively exploiting a critical vulnerability in the official Docker image for the Gitea self-hosted Git service ...
China-linked Silver Fox deploys the Rust-based MODBEACON RAT through fake software installers, targeting technology, ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
Socket found a compromised Injective npm package stealing wallet keys amid rising crypto supply chain attacks.
Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been ...
AI Now’s Friendly Fire PoC shows Claude Code and Codex running README-planted payloads on hosts when autonomous command ...
A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S. and Canadian universities to steal ...
Researchers at Zimperium have uncovered RedWing, a new Android malware-as-a-service sold through Telegram with subscription tiers, a support bot, and how-to videos. Once installed, it can steal ...