Criminals found yet another marketplace to infect and use as a launchpad for malware delivery.

Researchers from Zscaler found a new malware campaign dubbed Edgecution.

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.

Researchers found 15 malicious JetBrains plugins posing as AI coding tools that exfiltrate OpenAI, DeepSeek, and SiliconFlow ...

SocGholish uses traffic distribution systems (TDSs) to provide initial access into victims' networks for cybercrime groups ...

A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI supply chain risks.

Almost 7 million users have attempted to install malicious browser extensions since 2020, with 70% of those extensions used as adware to target users with advertisements. The most common payloads ...

AIR says static scanning failed to detect a skill that redirected to a controlled domain and later altered its payload.

SafeBreach found a now-fixed Gemini Android flaw that let malicious WhatsApp and Slack alerts manipulate AI responses and tools.

With the continuous development of computer networks, it is changing people’s way of life and work. But there are so many security threats, this case is getting worse. So people came up with ...