IntroductionOn May 14, 2026, the Zscaler ThreatLabz team identified unusually high activity associated with the threat actor SmartApeSG to deploy malware. During our examination, we discovered ...

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

For many renters, signing a lease can be one of the most important – and intimidating – financial decisions they make.

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's Protocol Buffers. The tool is highly ...

Anthropic inadvertently published parts of the source code for its AI coding tool, Claude Code. Developers discovered more than 500,000 lines of source code and over 1,000 related files on NPM, a ...

The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a malware loader based on the open-source Deno runtime for JavaScript and ...

To continue reading this content, please enable JavaScript in your browser settings and refresh this page. Preview this article 1 min It’s time to unveil the 2025 ...

The video player first needs to download the entire video before it can start playing, thus appearing to be a bit slow at first, so have patience. You can start the video by clicking on each player.

Security researchers have identified a new potential threat to software supply chains stemming from AI-generated code through a technique called "slopsquatting." Coined by security researcher Seth ...

The North Korea-linked Lazarus Group has been linked to an active campaign that leverages fake LinkedIn job offers in the cryptocurrency and travel sectors to deliver malware capable of infecting ...

The Securities and Exchange Board of India (SEBI) has raised the bar on cybersecurity with its newly introduced Cybersecurity and Cyber Resilience Framework (CSCRF), effective August 20, 2024. For ...