Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

Ping Fai Yuen, who is a U.K. resident, has accused his estranged wife of stealing a little over 2,323 bitcoin (worth around $172 million) from him in court documents. The theft is said to have taken ...

Plus: A porn-quitting app exposed the masturbation habits of hundreds of thousands of users, Russian hackers are trying to take over people’s Signal accounts, and more.

An international law enforcement operation shut down a service called SocksEscort, which allegedly helped cybercriminals all over the world launch ransomware and DDoS attacks, as well as distribute ...

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

Researchers say they have uncovered a takedown-resistant botnet of 14,000 routers and other network devices—primarily made by ...

The financially motivated group has been active since May 2025, impersonating Fortinet, Ivanti, Cisco, and other vendors to steal corporate credentials.

Law enforcement agencies across the United States and Europe have dismantled a large cybercrime network powered by AVrecon malware. The malware infected hundreds of thousands of routers worldwide and ...

SocksEscort sold proxy services on the open web, but was actually routing traffic through compromised routers and internet-connected devices.