A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler.

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

A new ClickFix attack that leverages a Nuitka loader targets macOS users with the Python-based Infiniti Stealer malware.

Over 1,000 exposed ComfyUI instances exploited via unauthenticated code execution, enabling Monero mining and botnet expansion.

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...

The maintainer account for the axios package on npm was compromised to inject a remote access trojan for Windows, macOS, and ...

This Windows 11 24H2 update download could quietly compromise your system and steal sensitive personal data, putting your system's privacy and security at serious risk.

An incident of LinkedIn malware means jobseekers and employers need to take more care with their applications and ...

TeamPCP strikes again, with almost identical code to LiteLLM.

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were receiving unauthorized patch updates, all containing the same hidden ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...