A previously unknown threat group using tried-and-tested social engineering tactics - Microsoft Teams chat invitations and ...

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

UNC6692 has been attributed to a large email campaign that's designed to overwhelm a target's inbox with a flood of spam ...

Python has emerged as a trusted ally for cybersecurity teams thanks to its ease of use, adaptability, and wide range of libraries. From building quick prototypes to automating repetitive checks, it ...

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.

Breakdown of the Trivy GitHub Actions attack, including workflow misconfigurations, token theft, and supply chain exposure.

Learn how to secure Model Context Protocol proxies with post-quantum cryptographic agility. Protect AI infrastructure against future quantum threats with hybrid encryption.

Commercial artificial intelligence tools were used as operational components in a cyber campaign that hit nine Mexican government organisations, according to a full technical report published by ...

Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver (BYOVD) technique to silence security tools running on compromised ...

Powerful quantum computers may be closer than scientists thought. To unleash the technology’s full power, scientists have long thought that quantum computers with millions of quantum bits, or qubits, ...

Apple tested end-to-end encryption (E2EE) for RCS messages exchanged between iPhone and Android users in the iOS 26.4 beta, but Apple made it clear the functionality was not going to launch in the iOS ...