How cybercriminals and organized cargo thieves stole 40,000 pounds of lobster using hacked load boards, fictitious pickups ...

A fourth wave of the "GlassWorm" campaign is targeting macOS developers with malicious VSCode/OpenVSX extensions that deliver ...

Chatbots can be overly agreeable. To get less agreeable responses, ask for opposing viewpoints, multiple perspectives, and a ...

A new Shai-Hulud npm strain and a fake Jackson Maven package show how attackers abuse trusted dependencies to steal secrets ...

China-linked Evasive Panda used DNS poisoning to deliver the MgBot backdoor in targeted espionage attacks from 2022 to 2024.

The cloud giant has stopped more than 1,800 suspected scammers from the Democratic People's Republic of Korea (DPRK, aka North Korea) from joining its workforce since April 2024, Amazon Chief Security ...

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...

Dippu is a strategic Data & Analytics leader and thought leader in emerging solutions, including Computer Vision and Generative AI/LLMs. Dippu is a strategic Data & Analytics leader and thought leader ...

A new malware campaign is A/B testing delivery effectiveness on software developers using malicious VS Code extensions. In a campaign tracked by Koi, a threat actor published two malicious VS Code ...

In December 2025, the GlassWorm supply chain malware campaign emerged again, affecting both the Microsoft Visual Studio Marketplace and Open VSX platforms. This episode involved 24 extensions posing ...

A new report reveals that SmartTube, the popular YouTube app removed from Android TV and Fire TV devices last week, contained malware after the developer’s build ...

ATLANTA — The holidays can bring happiness, hope, and hackers. They can also bring risk, with bad actors looking to take advantage of people using QR codes. It's a common scam hackers use that ...