Ten malicious packages mimicking legitimate software projects in the npm registry download an information-stealing component ...

Recently, security researchers Socket found 10 packages on npm targeting software developers, specifically those who use the ...

Cybersecurity, Cyber Espionage, Malware, PlugX, Data Breach, Vulnerability, Phishing, European Union, Threat Intelligence ...

If you’re among the 3.5 billion people using Google Chrome on Windows, Mac, Linux, or Android, it’s time to pay attention.

The typosquatted packages auto-execute on installation, fingerprint victims by IP, and deploy a PyInstaller binary to harvest ...

Ten typosquatted npm packages (Jul 4, 2025) delivered a 24MB PyInstaller info stealer using 4 obfuscation layers; ~9,900 ...

An advanced malware campaign on the npm registry steals the very keys that control enterprise cloud infrastructure.

Attackers are using the open-source red-team tool RedTiger to build an infostealer that collects Discord account data and ...

Google Chrome emergency update fixes a critical flaw in the V8 engine that could allow remote attacks. Users must update ...

A wave of advanced phishing campaigns is exploiting a novel combination of social engineering and browser-cache manipulation ...

Many Windows 11 users are reporting problems installing the Preview Update ( KB5067036 ), which is rolling out to devices ...

Windows can run on a Chromebook, but that doesn’t mean it should as performance and support trade-offs are too steep.