Cybercriminals use fake troubleshooting websites to trick Mac users into running terminal commands that install Shamos malware through ClickFix tactics.

Security investigators from Google said UNC6395 hackers spent several months running through Salesloft and Drift systems before launching a data breach campaign that some security researchers say has ...

Jamf Threat Labs has released a new report on Mac malware. Dubbed ChillyHell, the malware was first discovered in 2021 and ...

Bad actors are using GitHub's repository structure and paid Google Ads placements to trick EU IT users into downloading a unique malware dubbed "GPUGate" that includes new hardware-specific evasion ...

The malware tricks IT personnel into downloading malicious GitHub Desktop installers with GPU-gated decryption targeting ...

Google has added audio file upload support to its Gemini app on Android and iOS, along with ZIP file compatibility. Free ...

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

Most Android devices default to the Google Play Store for downloading and installing apps, but it's far from the only place ...

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

Google-owned Mandiant, which began an investigation into the incident, said the threat actor, tracked as UNC6395, accessed the Salesloft GitHub account from March through June 2025. It's currently not ...