Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.

GlassWorm, a known malware, has put 73 harmful extensions into OpenVSX's registry. Hackers use it to steal developers' crypto ...

Bitwarden CLI 2026.4.0 was compromised in a supply chain attack that targets crypto wallet keys, SSH keys, and CI/CD secrets.

GitHub facades and Ethereum smart contracts power a March 2026 admin-targeted campaign, enabling resilient C2 rotation and ...

Breach tied to compromised AI tool may have exposed credentials used by app frontends, the user-facing layer that connects ...

Global crypto exchange BYDFi is approaching the close of its month-long 6th anniversary season, marking a new checkpoint in its six-year journey.

Ohio-based sculptor Alan Cottrill finished a 15-foot bronze statue of Donald Trump. But a fight over payment is getting ...

A new report from ReversingLabs identified a new tactic by North Korean hackers: feeding malicious code to the AI systems ...

Researchers uncover a malicious npm dependency linked to an AI‑assisted code commit that steals sensitive data and exposes ...

() - The U.S. House of Representatives, in a 235-191 vote Wednesday, passed a measure to extend the spy powers of the federal ...