A supply chain compromise has placed AsyncAPI npm packages at the center of a developer security incident....
Threats
Miasma has returned through software packages that many developers would normally trust. Four AsyncAPI packages on npm...
One mistaken approval inside Salesforce can hand attackers a quiet, durable route into a company’s most sensitive...
Pro-Iran hacktivist networks are turning Telegram channels into hubs for cyber retaliation. Their campaigns combine website-disrupting DDoS...
Nearly 150 npm packages posing as school Wi-Fi bypass tools were used to turn visiting browsers into...
Turla, a long-running cyber espionage operation linked by French authorities to Russia’s Federal Security Service, has again...
Internet-facing AI systems are becoming a new target for opportunistic attackers. Recent scanning activity shows that threat...
A new threat model is raising hard questions about how quickly self-spreading malware could change during an...
Armored Likho has launched a phishing campaign that uses AI-generated loaders to deploy the newly identified BusySnake...
SpyGlace has returned in a campaign that hides malicious activity behind online services many companies trust. The...