Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...
A newly discovered threat actor is using Microsoft Teams, AWS S3 buckets, and custom "Snow" malware in a multipronged ...
UNC6692 relies on email bombing and social engineering to infect victims with Snow malware: Snowbelt, Snowglaze, and ...
Lazarus Group is targeting fintech and crypto executives using macOS through a new malware kit delivered via social ...
SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
A cyber group is impersonating IT helpdesk staff via Microsoft Teams to deploy malware and target corporate systems.
A previously unknown threat group using tried-and-tested social engineering tactics - Microsoft Teams chat invitations and ...
Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...
Panel patches authentication flaw across supported versions, prompting Namecheap port blocks and temporary access limits.
The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.
Lazarus continues leveraging ClickFix for initial access and data theft, in this case, against Mac-centric organizations and ...
Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results