Docker patched a critical Ask Gordon AI flaw enabling code execution and data theft via malicious image metadata in version 4 ...

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to distribute credential‑stealing payloads.

Attackers exploited Hugging Face’s trusted infrastructure to spread an Android RAT, using fake security apps and thousands of ...

Two malicious VS Code extensions have exfiltrated code snippets, API keys, and proprietary algorithms from 1.5 million ...

A Chinese-linked cyberespionage group with a long history hijacked the update process for the popular code editing platform Notepad++ to deliver a custom backdoor and other malware to targeted users, ...

ESET Research attributes DynoWiper to the Russia-aligned threat group Sandworm with medium confidence. The incident is a rare ...

ESET researchers present technical details on a recent data destruction incident affecting a company in Poland’s energy sector.

A new ransomware strain that entered the scene last year has poorly designed code and uses Hebrew language that might be a ...

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

A massive data breach has exposed the personal information of 17.5 million Instagram users. Learn the three steps you must ...

While not everyone can be conned into thinking Aquaman has fallen in love with them via Facebook, our research round-up this week highlights just how convincing some of these scams can be, thanks to ...

Talk about a monumental security lapse: American retail giant Target has found its proprietary source code exposed on the dark web, as current and former employees close to the matter confirm the ...