JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
Malicious npm packages mimicking Rollup polyfill tooling steal browser data, crypto wallets, and AI tool credentials in a Lazarus-linked campaign.
Arctic Wolf says Anubis affiliates abused RMM tools, VPN logins, RDP, PsExec, and cloud-transfer tools before ransomware ...
The award-winning Mitel platform embeds voice into business processes, linking scattered tools into one automated flow.
Alibaba will bar staff from using Anthropic's Claude Code from July 10 over an alleged backdoor, a source says, amid a wider Claude-Qwen dispute.
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
Researchers have discovered two vulnerabilities in the widely used Cursor AI-enabled integrated development environment (IDE) ...
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
Belgian authorities arrested a 19-year-old suspected of playing a key role in a European phishing and money-laundering network that stole more than 500,000 ...
Z.ai has launched ZCode, a free AI coding tool powered by GLM-5.2 that challenges Cursor, Claude Code and GitHub Copilot ...
The group compromised at least 10 regional organizations, including two state-owned entities, and deployed a new backdoor.
From video call QR scans to separate PINs, this Coldcard Q review shows how the $249 device brings Snowden-level security to ...