A security researcher frustrated with Microsoft has released the BlueHammer Windows zero-day exploit, telling the company, “I ...

A critical Adobe Acrobat zero-day has been exploited for months via malicious PDFs to steal data and potentially take over ...

A researcher released a working ‘BlueHammer’ Windows zero-day exploit that could impact over 1 billion devices, granting ...

CPUID breach served STX RAT via trojanized CPU-Z downloads on April 9–10, impacting 150+ victims and multiple industries.

Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell ...

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

New "Storm" infostealer skips local decryption, sending browser data to attacker servers. Varonis shows how server-side decryption enables session hijacking, bypassing passwords and MFA.

Don't let hackers take over your iPhone. AI image: ChatGPT/Cult of Mac Update: The sophisticated DarkSword hacking technique that came to light last week — capable of silently taking over iPhones the ...

In a new video, Mads Kristensen walked through 10 extensions and updates aimed at common developer requests, spanning workspace modes, comment handling, scratch files, Markdown linting, CSV editing, ...

New Delhi: A popular AI developer tool is now at the centre of a serious supply chain attack, and this one feels close to home for many developers. LiteLLM, a package with around 97 million downloads, ...

This week in cybersecurity: 338 new CVEs published including 11 critical severity. 9 vulnerabilities added to CISA KEV catalog. Plus major developments in AI security, supply chain attacks, and ...