Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...
Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...
The attacks stemmed from a GitHub account that was also compromised in a previous Miasma attack on Microsoft last month.
A new variant of the Gafgyt botnet called C0XMO is targeting DD-WRT router firmware and can move to other device types with ...
Google DeepMind just rolled out Gemma 4 12B, a 12-billion-parameter model that can parse text, images, audio, and video ...
JINX-0164 has targeted crypto developers through fake LinkedIn meeting invites that lead to macOS malware infections, ...
A China-linked espionage group lived inside corporate cloud accounts for a year and a half by stealing trust instead of ...
Chinese hacking group UNC5221 secretly accessed Microsoft 365 environments for 18 months using Brickstorm, Plenet and AgentPSD malware, researchers found. Freepik A sophisticated Chinese ...
The Brickstorm backdoor and unidentified malware called Plenet and AgentPSD have been used by a Chinese espionage cell known ...
AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results