New ClickFix variant maps WebDAV drive to run trojanized WorkFlowy app, enabling stealth C2 beacon and payload delivery.

AI-generated Slopoly malware used by Hive0163 in 2026 attacks maintained access for over a week, highlighting how AI ...

Hackers exploited a compromised npm package to breach cloud systems and gain full AWS administrator access within 72 hours.

Dutch intelligence says Signal, WhatsApp accounts are being targeted because they provide end-to-end encryption ...

Pro-Iranian hackers are targeting sites in the Middle East and starting to stretch into the United States during the war. Hackers supporting Iran claimed responsibility for a significant cyberattack a ...

A data breach at data analytics company LexisNexis L&P has leaked the details of over 400,000 cloud profiles after an attacker breached its AWS infrastructure.

Google is pushing an emergency patch for a zero-day vulnerability that has been exploited in the wild, and a second zero-day has been identified and is expected to be fixed in a future update.

Polyfill supply chain attack that hit more than 100,000 websites has now been linked to North Korean threat actors.

Google has confirmed an emergency Chrome security update amid reports that attackers are exploiting two zero-day ...

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...

Signal says its systems are secure but it is taking reports of targeted attempts to hack some officials "very seriously".

Dozens of white yaks frolicked in the pristine snow of the vast Kyrgyz mountains, butting heads and locking horns as their herders watched on from their horses.