Python scripts were used to test malware against endpoint detection and response agents from Sophos, CrowdStrike, and Windows ...

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...

A group of hackers, named JINX-0164, has been contacting crypto devs via LinkedIn and inviting them to fake meetings that ...

A threat actor has been observed using AI coding tools to develop and refine malware designed to slip past endpoint detection ...

AI vs AI cybersecurity arrived in documented form on May 10, when an LLM agent drove a four-pivot intrusion to database exfiltration in under an hour with no human direction. CrowdStrike data puts ...

Socket found seven malicious packages on PyPI The packages were abusing Gmail and WebSocket They were removed from the platform Several malicious PyPI packages were recently observed abusing Gmail to ...

A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent. According to Seqrite ...

Meta’s Rust-powered linter and type checker for Python pairs blazing speed with advanced and innovative features.

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other ...

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...

Cybersecurity researchers at Aikido Security have uncovered a malicious supply chain attack targeting OpenAI Codex developers via the npm package “codexui-android”. While the associated GitHub ...

A website called “UK visa portal” has been quietly collecting passport scans, selfies, and personal data from thousands of travellers who thought they were applying through official channels.