Malicious jscrambler 8.14.0 runs hidden binaries during npm install on Windows, macOS, and Linux, with no fix available as of ...
Suspected China- and India-aligned actors targeted Pakistani police systems with PlugX, ShadowPad, Remcos, and Cobalt Strike ...
Zimbra fixes a critical stored XSS flaw in its Classic Web Client that could let crafted emails run malicious scripts when ...
Six U-Boot flaws include four that can crash devices and two that could run code before signature checks; no fixed stable ...
A researcher says three patched OpenClaw flaws could enable credential theft, privilege escalation, and host code execution ...
O-UNC-066 uses vishing and a live phishing kit to trick Microsoft 365 users into enrolling attacker-controlled Entra passkeys ...
China-linked Silver Fox deploys the Rust-based MODBEACON RAT through fake software installers, targeting technology, ...
Former ransomware negotiator Angelo Martino gets 70 months for giving victim negotiation data to BlackCat operators and ...
Researchers tested 281 free Android VPN apps and found DNS leaks, plaintext traffic, weak tunnels, and flaws across apps with ...
Progress ordered ShareFile customers to shut down their Storage Zone Controllers while it investigates a credible external ...
Wiz says GhostApproval abuses symlinks so AI coding agents write to SSH keys or shell startup files while showing benign ...
GitHub releases npm 12 with install scripts off by default and begins phasing out 2FA bypass tokens for sensitive npm actions ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results