The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other ...

A newly-discovered malicious package with layers of obfuscation is disguised as a utility library, with malware essentially hiding in plain sight in embedded QR codes. QR codes are ubiquitous these ...

Attackers have poisoned a code package on the npm registry in a novel way, hiding credential-stealing malware in steganographic QR codes embedded in a package purporting to offer a JavaScript utility.

Android users are currently at risk of a scarily advanced malware that reportedly uses Meta's advertising platforms (like Facebook and Instagram) to hunt for users' PINs, messages, and other sensitive ...

The landscape of malware analysis has significantly evolved, driven by the increasing sophistication of cyber threats and the advanced techniques being developed to combat them. Malware attacks on US ...

Global cybercrime costs are expected to grow by 15 percent per year over the next five years—with malware and ransomware driving a significant portion. Malware has been part of the cybersecurity story ...

Learn how to protect your organization and users from this Android banking trojan. Nexus malware is an Android banking trojan promoted via a malware-as-a-service model. The malware has been advertised ...

A known Chinese advanced persistent threat (APT) group known as Mustang Panda is the likely culprit behind a sophisticated, ongoing cyber-espionage campaign. It starts with a malicious email, and ...

A self-professed novice has reportedly created a powerful data-mining malware using just ChatGPT prompts, all within a span of a few hours. After compiling the individual functions, Mulgrew had ...

We are either at the dawn of AI-driven malware that rewrites itself on the fly, or we are seeing vendors and threat actors exaggerate its capabilities. Recent Google and MIT Sloan reports reignited ...

Hackers have infiltrated a tool your software development teams may be using to write code. Not a comfortable place to be. There’s only one problem. How did your generative AI chatbot team-members ...