Blockstream warned Jade hardware wallet users about a phishing scam that sends fake emails with claims of a firmware update.

Cybercriminals use fake troubleshooting websites to trick Mac users into running terminal commands that install Shamos malware through ClickFix tactics.

Security investigators from Google said UNC6395 hackers spent several months running through Salesloft and Drift systems before launching a data breach campaign that some security researchers say has ...

Bad actors are using GitHub's repository structure and paid Google Ads placements to trick EU IT users into downloading a unique malware dubbed "GPUGate" that includes new hardware-specific evasion ...

The malware tricks IT personnel into downloading malicious GitHub Desktop installers with GPU-gated decryption targeting ...

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were ...

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

Most Android devices default to the Google Play Store for downloading and installing apps, but it's far from the only place ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.

Investigations into the Nx "s1ngularity" NPM supply chain attack have unveiled a massive fallout, with thousands of account ...