The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through malicious npm releases. Security researchers from StepSecurity identified ...

Josh Simons resigned after facing claims a think tank he used to run commissioned a report into journalists' backgrounds.

Threat group TeamPCP exploited credentials stolen in the Trivy breach to push malicious versions of LiteLLM to PyPI, exposing ...

Here’s what we know, and what you need to know, about Coruna and DarkSword, two advanced iPhone hacking tools discovered by ...

A leaked hacking tool called Coruna and DarkSword is putting millions of iPhone users at risk of getting their iPhone hacked.

A government-grade iOS exploit kit called DarkSword has been leaked on GitHub, putting hundreds of millions of iPhones ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

The DarkSword exploit is now publicly available to amateur hackers. Check our list to see if your iPhone or iPad requires an ...

A newer DarkSword exploit leak makes hacking outdated iPhones easier, exposing hundreds of millions of devices to risk.

AI agents struggle with modern, content heavy websites. It's slow and expensive to crawl. The markdown standard makes your ...

Uh-oh. Now anyone can easily use it.

Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor ...