A Russian-speaking threat actor known as "bandcampro" used Google's open-source Gemini CLI AI tool as a hacking agent and to ...
This Apple credential theft attack targeted your macOS login password while bypassing the built-in malware protection. Here’s ...
An exposed attack server led Lexfo to three Microsoft 365 phishing operations using Evilginx and device code abuse to capture ...
An open WP-SHELLSTORM server exposed tools, logs, and target lists naming 1.4 million sites, with researchers validating ...
Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been ...
Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to ...
The Armored Likho APT is targeting government and electric power organizations with modular RATs and information stealers.
JadePuffer exploited a vulnerable Langflow server, harvested credentials, moved laterally, and encrypted more than 1,300 ...
A new report reveals that AI agents can autonomously execute ransomware attacks, evidenced by the case of JADEPUFFER, which ...
A loose collective of cybercriminals initially took credit for crippling Jaguar Land Rover last year. Investigators now see Russian hands behind the ransomware attack. By Adam Goldman Jane Bradley ...
It’s been about a week since New York City’s Madison Square Garden became the target of a humiliating data breach—and the revelations keep on coming. A data engineer for DataBreach.com, a website that ...
LastPass, a password manager maker, is informing customers of a recent security breach at third-party market intelligence platform Klue, and how it impacts its customers, according to a recent blog ...