On June 24, 2026, Microsoft’s Digital Crimes Unit (DCU) facilitated the takedown, suspension, and blocking of domains that ...
A malicious npm package has been caught impersonating one of the JavaScript ecosystem's most widely used build tools. The ...
The malware program has been deployed across multiple sectors since April, helping to provide initial access sold to ransomware gangs.
A malicious Microsoft Edge extension dubbed ‘Edgecution' has been used in a ransomware attack to escape the browser sandbox and deploy a Python-based backdoor. Access to the local system is obtained ...
JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
DirtyClone, tracked as CVE-2026-43503, is a Linux kernel vulnerability that allows any local user to gain root privileges.
OpenAI is rolling out the full, limited-release version of GPT-5.5-Cyber—a specialized AI model that outperforms its ...
Z.ai pitches GLM-5.2 for long-running software engineering tasks The open-source model combines a one-million-token context window with architectural updates aimed at lowering the cost of ...
Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results