JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
Jamf says the Rust-based PamStealer targets Apple Silicon Macs, steals browser, wallet, Keychain, and clipboard data, and persists.
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
A wave of recent product updates suggests the competition among AI coding tools is moving beyond autocomplete and chat toward long-running agents that can understand projects, invoke tools, and carry ...
LLVM powers the core development tools, operating systems, and most applications at Apple Computer, where it long ago ...
Nissan pins employee data breach on Oracle PeopleSoft zero-day as ShinyHunters hacking spree continues. Carmaker Nissan began informing current and former employees late last week of a data breach ...
A malicious Chromium-based extension that spoofs the AI-powered answer engine Perplexity AI redirects browser search traffic using MV3 APIs and intermediary infrastructure.