The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

Two versions of LiteLLM, an open source interface for accessing multiple large language models, have been removed from the ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

North Korean hackers exploit VS Code tasks.json auto-run since Dec 2025 to deploy StoatWaffle malware, stealing data and ...

A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to ...

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, ...

The GlassWorm malware made news when it pivoted from exclusively targeting Windows users to also targeting Mac OS users in January, and in the time since, the malware campaign has spread across at ...

Cybernews researchers uncovered numerous OpenWebUI instances that were silently running malware.

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.

The Trivy story is moving quickly, and the latest reporting makes one thing clear: this is no longer just a GitHub Actions ...

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across ...