Malicious npm packages have been identified distributing malware that steals credentials and attempts to spread across ...

Researchers have finally cracked Fast16, mysterious code capable of silently tampering with calculation and simulation ...

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

UNC6692 has been attributed to a large email campaign that's designed to overwhelm a target's inbox with a flood of spam ...

Python has emerged as a trusted ally for cybersecurity teams thanks to its ease of use, adaptability, and wide range of libraries. From building quick prototypes to automating repetitive checks, it ...

ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian ...

Checkmarx suffers a second supply chain attack in a month, resulting in hackers injecting credential-stealing malware into ...

One group of hackers used AI for everything from vibe coding their malware to creating fake company websites—and stole as ...

CVE-2026-5752 CVSS 9.3 flaw in Terrarium enables root code execution via Pyodide prototype traversal, risking container ...

Scammers built a convincing fake Windows update site that installs password-stealing malware. Learn how the multi-stage ...

Chainguard, the trusted source for open source, today announced a partnership with Cursor, the leading multi-model AI coding platform, to secure the next generation of agentic software development.

Canva shifts to an AI-first platform as Anthropic unveils Claude Design, its Figma rival — drawing hype, skepticism, and ...