Multiple threat actors are abusing the GitHub API to discover organizations’ repositories and members via ghost accounts.
The GigaWiper backdoor combines several malware families and can sabotage systems using a wiper, encryption, and wiping ...
A threat actor is targeting organizations across multiple sectors in voice-enabled attacks involving Microsoft 365 phishing ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
A new attack technique dubbed HalluSquatting turns AI assistants’ tendency to hallucinate into a scalable infection vector.
Cyberespionage groups linked to both China and India spent more than two years quietly breaking into Pakistani law ...
UK unveils Cyber Shield and Cyber Resilience Pledge, pairing agentic AI defense plans with new cybersecurity commitments for ...
Multiple Tenda firmware versions contain a backdoor (CVE-2026-11405) that provides access to the device’s web management ...
Accenture confirmed a data breach after a hacker claimed to steal 35GB of internal data, including source code and ...
UAT-7810, the Chinese APT behind a prolonged espionage infrastructure campaign, has added new backdoors to its arsenal.
Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been ...
In other news, a DHS database was hacked, Adobe is releasing patches twice a month, and Canada has disrupted ransomware operations.