A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

TeamPCP strikes again, with almost identical code to LiteLLM.

An incident of LinkedIn malware means jobseekers and employers need to take more care with their applications and ...

The TeamPCP hacking group has been using credentials stolen in the recent OSS campaign to enumerate and compromise AWS ...

AtlasCross RAT spreads via 11 fake domains registered October 27, 2025, enabling encrypted C2 control and persistence.

The threat group's shift to speedy attacks on AWS, Azure, and SaaS instances shows organizations need to respond quickly to ...

Socket uncovers large-scale GitHub spam campaign abusing “Discussions” notifications Fake advisories with bogus CVEs trick ...

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...

Anthropic is trying to remove details about its coding agent from GitHub, but programmers are converting the code into ...

Jason Murdock is a staff reporter for Newsweek. Based in London, Murdock previously covered cybersecurity for the ...

Tehran TACO: Trump's bad idea has gone wrong, to literally no one's surprise. Will Putin bail him out?

IntroductionOn March 31, 2026, Anthropic accidentally exposed the full source code of Claude Code (its flagship ...