ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users and developers.

There is, however, one last line of defense: a dark web monitoring service. Here's what they are, how they work, and which ...

Researchers discovered a Chrome vulnerability that allowed malicious extensions to hijack the Gemini AI panel and access sensitive system resources.

Polyfill supply chain attack that hit more than 100,000 websites has now been linked to North Korean threat actors.

The hacking group responsible for a disruptive cyber attack on a Victorian poultry giant, Hazeldene's, has published a ...

A Wikipedia security engineer accidentally wakes a dormant JavaScript worm that hadn’t stirred since 2024 – and within minutes, giant woodpecker images are plastered across the internet’s ...

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be the first documented case of attackers abusing the Deno JavaScript runtime ...

The SafePay ransomware group has listed an NSW-based dental practice as a victim on its darknet leak site and has published a raft of documents stolen during the breach. Smile Team Orthodontics was ...

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.

Researchers said a sophisticated exploit kit with 23 iOS vulnerabilities is being used by espionage and cybercrime campaigns.

Russian cybersecurity outfit Kaspersky is waving away claims that an iPhone exploit kit recently uncovered by Google was developed by the same people who were behind a group of zero-days that ...

Google reveals Coruna, a powerful exploit kit targeting older iOS versions to bypass security, install malware, and steal ...