Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more than 37 times this year.

With Anthropic rushing to wipe out the Claude Code leak, hackers are posting malware-laden files on GitHub that they claim are special, unlocked versions of the AI tool.

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

Within days of each other, Anthropic first leaked the source code to Claude Code, and then a critical vulnerability was found ...

Bitdefender finds a sharp rise in phishing and malware emails targeting Gulf countries after February 28 escalation.

The danger in the code came from characters that are invisible to the human eye. In early March researchers at several security firms examined what looked like empty space and found hidden Unicode ...

Kaspersky has warned of a new malware campaign targeting developers through fake Claude Code and OpenClaw downloads. Using malicious search ads, hackers are infecting Windows and Mac users with ...

The GlassWorm malware made news when it pivoted from exclusively targeting Windows users to also targeting Mac OS users in January, and in the time since, the malware campaign has spread across at ...

Abstract: In recent years, information security has emerged as one of the most critical challenges in the digital era. The misuse of generative artificial intelligence, the rapid mutation of malware, ...

This software is intended to sensitize users to this kind of attacks. Don't use it for any other purposes! In the main screen you can select which application are going to be overlayed (currently ...

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extensions on GitHub, npm, and VSCode/OpenVSX extensions. Evidence ...