According to Socket, malicious payment SDK packages on npm and PyPI are harvesting developer credentials and CI/CD ...
Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to ...
Sophos says Claude Code, Cursor, and Codex triggered Windows endpoint rules for credential access, LOLBin downloads, and ...
ESET Research has released its H1 2026 Threat Report with statistics from December 2025 through May 2026. ClickFix – a social engineering technique leveraging fake error messages – has expanded into ...
A threat group researchers call "Armored Likho" has gained access to government agencies and electrical power entities in ...
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
Maccy users are being warned about fake sites after researchers found malware using the app’s name to steal Mac login ...
Fake CVE exploit repos pull frint and skytext packages to steal researcher credentials, with servers still live as of July 1.
Researchers have found a never-before-seen piece of macOS malware that combines a series of clever tradecraft to infect Macs ...
Abstract: The exponential growth of encrypted network traffic in IoT ecosystems has created a critical challenge: maintaining privacy while enabling effective malware detection. This paper presents a ...