A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized ...
A new ClickFix social engineering campaign is targeting the hospitality sector in Europe, using fake Windows Blue Screen of Death (BSOD) screens to trick users into manually compiling and executing ...
Developers now need to be careful with job offers. Criminals are trying to distribute infostealers through them.
North Korean-linked hackers have targeted more than 3,100 IP addresses tied to AI, crypto, and finance firms through fake job interviews. The campaign used frau ...
As attackers hide longer and deeper, behavior-first detection becomes the only reliable way to expose them.
Discover how crypto malware operates through cryptojacking and ransomware, with real-world examples such as WannaMine and PowerGhost ...
The DeadLock ransomware group, a newly emerged digital extortion group, is using blockchain smart contracts to store proxy ...
The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not properly validated.
Microsoft patched a Windows Remote Assistance flaw that lets attackers bypass Mark of the Web, weakening protections against ...
Vercel has open-sourced bash-tool that provides a Bash execution engine for AI agents, enabling them to run filesystem-based ...
This week's stories show how fast attackers change their tricks, how small mistakes turn into big risks, and how the same old ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback