Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.

Plus: A porn-quitting app exposed the masturbation habits of hundreds of thousands of users, Russian hackers are trying to take over people’s Signal accounts, and more.

Google patches two actively exploited Chrome vulnerabilities that could allow attackers to crash browsers or run malicious code. Billions of users urged to update.

In a rare move, the FBI has published an alert 'seeking victim information' related to a hacker exploiting Valve's Steam ...

This week saw attacks on Claude Code users, LastPass users, Starlink users, and, perhaps worst of all, people who needed an ambulance. Add a dash of AI hacking, and you have another wild week in ...

Coruna” is the name of a collection of hacking tools for the iPhone that cracks various iOS versions. Apparently, state actors are behind it again.

Kraemer advises being extremely cautious about links sent in a WhatsApp chat, even from close friends. If in doubt, contact them via another channel, not WhatsApp, in case their account is compromised ...

OpenAI releases GPT-5.4, combining reasoning, coding, and computer control in one model, surpassing competitors.

"Coruna" has compromised thousands of iPhones globally, according to a new report released by the Google Threat Intelligence Group (GTIG).

OS Coruna exploit kit tied to US government tools is now targeting iPhones. Find out which iOS versions are at risk and what ...

A single email can undo years of careful online habits. That message claims you ordered something expensive from Amazon. It ...