A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
Now sites have a new way to spy on their visitors: measuring subtle interactions with their solid-state drives. The technique ...
Ghostwriter used Prometheus lures since spring 2026 to target Ukraine agencies, enabling malware delivery and data theft.
Google has accidentally leaked details about an unfixed issue in Chromium that keeps JavaScript running in the background ...
Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens ...
Abstract: The increasing reliance on Field Programmable Gate Arrays (FPGAs) in security-critical applications underscores the need for robust protection mechanisms against cyber threats such as buffer ...
Tycoon2FA has returned with new device-code phishing attacks targeting Microsoft 365 users through legitimate OAuth login ...
Copycat hackers are competing to win $1,000 for the largest supply chain attack using Shai-Hulud, an open-sourced worm that has brought down a few major open-source projects. Malicious NPM packages ...
The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack ...
Cybersecurity researchers are sounding the alarm about what has been described as "malicious activity" in newly published versions of node-ipc. node-ipc@9.1.6 node-ipc@9.2.3 node-ipc@12.0.1 "Early ...
Code a Business, aka Coding Simulator 2, is the perfect game to fulfill your coding wizard dreams. Start coding and build your business slowly, hire employees, and create your empire in minutes. But ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results