GitHub Warns Devs of North Korean Attacks
GitHub has warned of a new North Korean threat campaign designed to compromise victims via malicious npm package dependencies.The development...
GitHub has warned of a new North Korean threat campaign designed to compromise victims via malicious npm package dependencies.The development...
Ransomware attacks in June soared 221% year-on-year to hit a record 434 for the month, according to an analysis from...
The US Department of Justice (DoJ) is doubling the size of the team investigating cryptocurrency crime, with the fight against...
A Chinese cyber-espionage campaign revealed by Microsoft last week compromised the government email account of the US ambassador to China...
The Russian state prosecution asked the Moscow City Court to impose 18 years in a strict colony regime on Ilya...
Generative AI tools have conquered the workplace, especially large language model-based (LLM) chatbots like OpenAI’s ChatGPT and Google’s Bard.These powerful...
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoelra -- parkmatikImproper Neutralization of Special Elements used in an SQL Command...
Adobe released an emergency ColdFusion security update that fixes critical vulnerabilities, including a fix for a new zero-day exploited in...
The Chinese state-backed APT41 hacking group is targeting Android devices with two newly discovered spyware strains dubbed WyrmSpy and DragonEgg...
Earlier this month, security researchers discovered a new peer-to-peer (P2P) malware with self-spreading capabilities that targets Redis instances running on...
Image: Bing Image Creator Two new critical severity vulnerabilities have been discovered in the MegaRAC Baseboard Management Controller (BMC) software...
GitHub is warning of a social engineering campaign targeting the accounts of developers in the blockchain, cryptocurrency, online gambling, and...
Web applications remain a prime target for cyberattacks, posing significant risks to businesses and their bottom lines. So much so,...
US-based enterprise software company JumpCloud was breached by North Korean Lazarus Group hackers, according to security researchers at SentinelOne, CrowdStrike,...
Over eight in 10 (83%) of the UK’s critical national infrastructure (CNI) firms believe new technologies designed to enhance sustainability...
Estee Lauder has become the latest big name to suffer an apparently serious ransomware breach, after two groups claimed to...
Open source is playing a growing role across the AI technology stack, but most (52%) projects reference known vulnerable dependencies...
Security behavior change firm Hoxhunt has published its latest research highlighting employees' resilience in critical infrastructure, showing a higher engagement level...
Microsoft has announced intentions to enhance cloud logging and improve security visibility for its customers in response to the growing...
A data breach affecting the online game platform Roblox has exposed sensitive information from thousands of users.Troy Hunt, founder of...
Distributed Denial of Service (DDoS) botnets have been used to actively exploit a critical vulnerability found in Zyxel firewall models.The...
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoelra -- parkmatikImproper Neutralization of Special Elements used in an SQL Command...
FBI warns of a surge in tech support scams targeting the elderly across the United States and urging victims to...
The U.S. government has banned European commercial spyware manufacturers Intellexa and Cytrox, citing risks to U.S. national security and foreign...