A well-known China-aligned threat group has quietly evolved its attack methods, and its latest toolset reveals just how...
Hackers are exploiting a decades-old Windows tool to deliver dangerous malware onto unsuspecting systems, with consequen...
Three consecutive releases of Microsoft’s official Python workflow SDK were poisoned with a multi-cloud credential-steal...
A new vulnerability in NGINX JavaScript (njs), tracked as CVE‑2026‑8711, allows unauthenticated remote attackers to trig...
A seemingly innocent typo in a Go module name has been quietly serving a live backdoor for nearly three years. Security...
ExifTool, a ubiquitous open-source utility for reading and writing file metadata, is at the center of a severe security...
A critical vulnerability in the open-source IP PBX platform FreePBX could allow unauthenticated attackers to access user...
A critical vulnerability chain affecting Pardus Linux has been disclosed, allowing local users to gain full root privile...
Grafana Labs has disclosed a targeted ransomware-linked breach of its GitHub environment, traced to a broader TanStack n...