Free beer is great. Securing the keg costs money fosdem 2026 Open source registries are in financial peril, a co-founder of ...

Microsoft has warned users that threat actors are leveraging a new variant of the ClickFix technique to deliver malware.

Practical DevSecOps launches the Certified Security Champion course to help orgs bridge the talent gap by upskilling ...

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.

A fake ad-blocking browser extension is deliberately crashing Chrome and Edge to trick users into running malware on their own PCs.

Espionage groups from China, Russia, and Iran burned at least two dozen zero-days in edge devices in attempts to infiltrate defense contractors' networks.

Security researchers detected artificial intelligence-generated malware exploiting the React2Shell vulnerability, allowing ...

India is being targeted by multiple espionage campaigns delivered by the Pakistan-attributed Transparent Tribe (aka APT36).

Businesses are being warned about a new cyber campaign targeting Windows environments where getting in is only the beginning – not the end – of the attack.

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.

Adversaries weaponized recruitment fraud to steal cloud credentials, pivot through IAM misconfigurations, and reach AI ...

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.