-
A widely used npm package with more than 822,000 weekly downloads has once again become the center of a serious supply chain attack, raising fresh concerns across the JavaScript ecosystem. Security researchers at Socket have uncovered multiple maliciou…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Hackers are using Fake interview apps to spread JobStealer malware on macOS and Windows to steal crypto wallets, browser data, and passwords.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Bitdefender Labs reveals how the China-linked FamousSparrow hacking group targeted an Azerbaijani energy firm using ProxyNotShell, Deed RAT,…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
A new Darktrace report reveals how Chinese hackers use fake Apple and Yahoo sites and the FDMTP malware framework to spy on organisations.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
In a massive blow to the global electronics supply chain, manufacturing giant Foxconn has confirmed a major cyberattack on its North American operations. The notorious Nitrogen ransomware gang has claimed responsibility, boasting that it stole a stagge…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
TeamPCP claims to be selling alleged Mistral AI repositories on a hacker forum after the Mini Shai-Hulud attack targeted npm and PyPI ecosystems.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Instructure has reached an agreement with the ShinyHunters group to return and destroy stolen Canvas data, protecting millions of student records from a public leak.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Research reveals that TeamPCP hijacked OIDC tokens to poison hundreds of TanStack, Mistral AI, and UiPath packages with the self-propagating Mini Shai-Hulud worm.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Canadian telecom providers face mounting cyber threats from ransomware, SIM swapping, data breaches, and nation-state attacks targeting critical infrastructure.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
A proof-of-concept (PoC) exploit that demonstrates how attackers can bypass Windows 11 BitLocker disk encryption in under 5 minutes. Dubbed the “BitUnlocker” attack, this physical downgrade technique exploits a known vulnerability, CVE-2025…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
