Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

Over 500,000 publicly exposed Windows web servers running end-of-life IIS software have been mapped by security researchers.

A summary of the announcements made by vendors in the days leading up to the RSAC 2026 Conference. As hundreds of vendors ...

Overview Recently, NSFOCUS Technology CERT detected that the GitHub community disclosed that there was a credential stealing program in the new version of LiteLLM. Analysis confirmed that it had ...

Chainguard is racing to fix trust in AI-built software - here's how ...

This year’s Grand Prix winner is the utterly remarkable Maddie King. Her impact on MagicBrief and its rapid acceleration from ...

A new macOS malware campaign uses a fake CAPTCHA ClickFix trick to lure users into running Terminal commands, delivering a stealthy infostealer compiled with Nuitka ...

A student programmer allegedly developed malware used in a transnational cybercrime operation generating billions of VND.

Working as a software development engineer for AWS Security at Amazon, Praveen Ravula, the 2025 Developer of the Year awardee ...

A malicious Python package masquerading as a legitimate Telegram development tool has been identified as a vehicle for remote code execution attacks, raising concerns about supply chain security ...