Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

DRILLAPP JavaScript backdoor targets Ukraine in Feb 2026, abusing Edge debugging features to spy via camera, microphone, and ...

Powered by the TypesScript-native runtime Bun, Electrobun improves Electron with a smaller application footprint and built-in ...

The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.

H2O.ai, a pioneer in sovereign AI and the world’s leading agentic, highly accurate predictive AI company, today announced its ...

LeakNet ransomware uses ClickFix attacks on hacked sites to trick users into running malicious commands and stealing data.

We are waking up Wednesday morning to another round of wintry mix. Some light snow showers are falling and there are reports of some drizzle as well which would cause icy patches with air temps in the ...

The campaign, observed in February 2026, has been assessed to share overlaps with a prior campaign mounted by Laundry Bear, a group tracked by Microsoft as Void Blizzard.

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

Our weekly round-up of letters published in the Courier. Let me see if I understand this: Gov. Pillen has stated that he ...

GlassWorm attack uses stolen GitHub tokens to inject malware into Python repositories, exposing developers to supply chain risks.