Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

North Korea is doubling down on a familiar playbook by weaponizing trust in open-source software and developer workflows. The ...

Hackers are hunting for vulnerable endpoints to deploy Python malware.

This was not a single company breach, the credentials were harvested from millions of infected user devices using infostealer malware. Binance appeared in the dataset ...

Weekly cybersecurity recap covering emerging threats, fast-moving attacks, critical flaws, and key security developments you ...

Here's what to look out for ...

According to the firm’s latest supply chain security report, there was a 73% increase in detections of malicious open-source packages in 2025. The past year also saw a huge jump in the scope of ...

Cloud collaboration, macro security, and new tools like Office Scripts, Power Query, and Python are pushing VBA to the ...

Hackers are on the hunt for open telnet ports in servers after discovering that a version of legacy client-server application ...

A critical sandbox escape vulnerability in Grist-Core has been disclosed that allows remote code execution (RCE) through a ...

Three serious prompt injection vulnerabilities in Anthropic’s Git MCP server briefly enabled remote code execution and file ...