Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
Malicious npm packages mimicking Rollup polyfill tooling steal browser data, crypto wallets, and AI tool credentials in a Lazarus-linked campaign.
GitHub secret scanning now extends beyond org-owned repositories: Public Monitoring scans all of GitHub.com in real time, ...
Available today, ExpressKeys now delivers more secure sharing, passkey support, and improved cross-device management.
With phishing and AI-driven identity attacks rising, Windows Hello PIN security depends on TPM-backed keys, enterprise ...
ConsentFix and ClickFix attacks steal Microsoft 365 tokens in seconds using fake prompts and OAuth flows. Learn how these MFA ...
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
Threat actors have made over 81 million login attempts in a massive password spray campaign targeting Azure CLI.
Attackers behind a password-spraying campaign targeting Microsoft Office 365 accounts have amassed dozens of victims by abusing a deprecated feature in OAuth 2.0 to ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results