The threat actor behind the Axios supply chain attack has been aiming at other maintainers in its social engineering campaign. After inviting Saayman to a Slack workspace, the hackers scheduled a ...

Fortinet issues emergency patches for CVE-2026-35616, a FortiClient EMS zero-day vulnerability that has been exploited in the ...

Cisco has patched eight critical and high-severity vulnerabilities that could lead to bypasses, code execution, and privilege ...

European Commission disclosed a data breach after hackers published information stolen from AWS using a key compromised in ...

Google has announced a Chrome 146 update that patches 21 vulnerabilities, including a zero-day that has been exploited in the ...

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.

Mercor says it has been impacted by the LiteLLM supply chain attack as Lapsus$ has auctioned 4TB of data allegedly stolen ...

Depthfirst has raised $80 in Series B funding and launched its first in-house security model to secure cryptocurrency smart ...

As hundreds of vendors descend on San Francisco for the RSAC 2026 Conference, the sheer volume of news can be overwhelming.

Within days of each other, Anthropic first leaked the source code to Claude Code, and then a critical vulnerability was found ...

Palo Alto Networks has shared details about how its researchers weaponized AI agents built on Google Cloud’s Vertex AI ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...