Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

Microsoft plans major WSL improvements in Windows 11 2026, with faster file performance, better networking, and easier setup ...

Language package managers like pip, npm, and others pose a high risk during active supply chain attacks. However, OS updates ...

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

A new macOS malware campaign uses a fake CAPTCHA ClickFix trick to lure users into running Terminal commands, delivering a stealthy infostealer compiled with Nuitka ...

A newly documented BlankGrabber infection chain is using a bogus “certificate” loader to disguise a multi-stage Windows compromise, adding another layer of deception to a commodity stealer already ...

YouTuber and orbital mechanics expert Scott Manley has successfully landed a virtual Kerbal astronaut on the Mun, the in-game moon of Kerbal Space Program, using a ZX Spectrum home computer equipped ...

ThreatsDay Bulletin covers stealthy attack trends, evolving phishing tactics, supply chain risks, and how familiar tools are ...

Learn the five core elements shaping intelligent automation in 2026, from orchestration and event-driven data flows to ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

A practical, hands-on guide to navigating deepfake technology and reducing the risks it poses to your business.