Multiple threat actors are abusing the GitHub API to discover organizations’ repositories and members via ghost accounts.
A threat actor is targeting organizations across multiple sectors in voice-enabled attacks involving Microsoft 365 phishing ...
A new attack technique dubbed HalluSquatting turns AI assistants’ tendency to hallucinate into a scalable infection vector.
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
The GigaWiper backdoor combines several malware families and can sabotage systems using a wiper, encryption, and wiping ...
GhostLock (CVE-2026-43499) is a 15-year-old Linux kernel vulnerability that allows attackers to gain root privileges.
Cyberespionage groups linked to both China and India spent more than two years quietly breaking into Pakistani law ...
A government entity in the US reportedly paid a $1 million ransom to the Kairos cyber extortion group to prevent the public ...
Exploit for "Bad Epoll" Linux kernel vulnerability (CVE-2026-46242) can lead to root access on desktops, servers, and Android ...
Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been ...
Accenture confirmed a data breach after a hacker claimed to steal 35GB of internal data, including source code and ...
Multiple Tenda firmware versions contain a backdoor (CVE-2026-11405) that provides access to the device’s web management ...