Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install
Version 8.14.
Aggregating 7485 articles from trusted cybersecurity sources
Version 8.14.
Cybersecurity researchers have disclosed details of sustained cyber espionage activity against several Pakistani law enforcement organizations undertaken by ...
Binarly found six U-Boot flaws, including two that enable code execution during boot image verification, impacting 50+ releases. Binarly’s research team has ...
Multiple campaigns are using ghost accounts to map GitHub organizations, including their repositories and members. The post Ghost Accounts Abuse GitHub API i...
The Australian Cyber Security Centre (ACSC) issued an alert about a global exploitation campaign targeting vulnerable content management systems (CMS) and pl...
The Cybersecurity and Infrastructure Security Agency (CISA) has disclosed details of an internal security incident involving exposed AWS GovCloud credentials...
A sophisticated Windows Trojan that compromises software development projects to distribute a multi-stage backdoor, data stealer, clipboard hijacker, cryptom...
Wireshark release 4.6.
A PNG hiding a prompt injection could steal your repo's secrets, researchers demonstrate. The technique, dubbed 'Ghostcommit,' slipped past AI code reviewers...
Zimbra has released its Daffodil v10.1.
A newly disclosed Dell BIOS password-storage flaw can allow attackers with physical access to recover administrator and user passwords from SPI flash dumps i...
Zimbra is urging customers to apply updates to address a critical security vulnerability impacting the Classic Web Client that could result in arbitrary code...
A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an...
The British public education sector has faced the nation’s most dramatic increase in cyber breach prevalence over the past year
A developer at an AI startup wanted to cheat at Roblox. They downloaded a dodgy script on their work laptop.
Medtronic confirms IT breach as ShinyHunters claims millions of records accesseda
Explore the 2026 Claude Mythos breach, supply chain risks, and the $2B+ crypto theft pipeline.
UK government Minister confirms that breached health records of UK Biobank volunteers were up for sale on Chinese ecommerce platforms before being removed
A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability
Cloud app developer Vercel appears to have suffered a security breach
For the latest discoveries in cyber research for the week of 20th April, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Booking.
Ignoring a real breach notification invites risk, but falling for a bogus one could be even worse. Stop reacting on autopilot.
Tennessee's CRMC notifies over 337,000 patients of Rhysida ransomware breach exposing sensitive data
A hacking group claims to have broken into the flood defence system protecting Venice's Piazza San Marco - and is offering to sell access to whoever wants it...