Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
Attackers exploited Langflow vulnerability CVE-2025-3248 to conduct an agentic AI-powered ransomware attack involving reconnaissance, credential theft, and lateral movement.
Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called ChocoPoC, travels in Python proof-of-concept (PoC) repositories ...
Multiple weaponized proof-of-concept (PoC) exploits on GitHub delivered a Python-based remote access trojan (RAT) called ChocoPoC that can execute commands and steal sensitive data. However, ChocoPoC ...
Operation Navy Ghost is targeting Python developers who build Telegram bots by hiding backdoors inside trojanized Pyrogram forks uploaded to PyPI. The campaign has been active since November 2025, ...
Microsoft Threat Intelligence has tracked a Windows cryptocurrency clipper, dubbed CryptoBandits, that’s been active since February 2026. The malware spreads through booby-trapped USB shortcut files, ...
Key Takeaways by nexos.ai, reviewed by Cybernews staff. According to several cybersecurity firms, the attack began after the npm account of Mastra contributor “ehindero” was compromised. Instead of ...
Security researchers identified a coordinated malware campaign within the JetBrains Marketplace designed to exfiltrate developer API keys. The operation targets software engineering teams ...
The North Korean state-sponsored hacking group known as ScarCruft (aka APT37) has been observed using spear-phishing messages impersonating Microsoft Account security notifications to deliver a new ...
A fake Bithumb email used in the $36 million Humanity Protocol hack points to the involvement of North Korean threat actors, according to Quantstamp. A malicious attachment delivered through a ...
There is no indication that the palm biometrics “Proof-of-Trust” nee “Proof-of-Humanity” startup Humanity Protocol uses for identity verification have failed. Instead, the company traces a massive ...
Threat actors have been using short-form videos on TikTok and Instagram Reels to push the Vidar infostealer, disguising the attacks as tutorials for unlocking premium software for free. New analysis ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results