New SantaStealer malware reportedly threatens holiday shoppers with password theft. This Christmas-themed info-stealer ...

Malicious npm package posing as a WhatsApp Web API library operated for months as a functional dependency while stealing ...

And it's especially dangerous because the code works A malicious npm package with more than 56,000 downloads masquerades as a ...

An Interpol-coordinated initiative called Operation Sentinel led to the arrest of 574 individuals and the recovery of $3 ...

Four distinct threat activity clusters have been observed leveraging a malware loader known as CastleLoader, strengthening the previous assessment that the tool is offered to other threat actors under ...

A crypto user has fallen victim to a malware attack where the hacker got away with $27 million. The process involved poisoning the user’s computer, which then allowed the hacker access to critical ...

Attackers behind a self-propagating malware campaign targeting Brazilian financial institutions have accelerated and upgraded their malicious activity, using artificial intelligence (AI) to spawn a ...

Cybersecurity researchers have discovered vulnerable code in legacy Python packages that could potentially pave the way for a supply chain compromise on the Python Package Index (PyPI) via a domain ...

Abstract: The frequency of supply-chain attacks has reached unprecedented levels, amounting to a growing concern about the security of open-source software. Existing state-of-the-art techniques often ...

A highly stealthy new Android banking trojan named Sturnus has been discovered that can silently read every message you send or receive on Signal, Telegram, and WhatsApp — despite their end-to-end ...