A newly documented BlankGrabber infection chain is using a bogus “certificate” loader to disguise a multi-stage Windows compromise, adding another layer of deception to a commodity stealer already ...

International cybersecurity firms had been tracking a sophisticated malware strain called PXA Stealers for months, tracing it to a Vietnamese-speaking developer whose Telegram handle "Lone None" was ...

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to ...

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.

The San Francisco start-up claimed that DeepSeek, Moonshot and MiniMax used approximately 24,000 fraudulent accounts to train their own chatbots. By Cade Metz Reporting from San Francisco The San ...

Entire Inc., a startup led by former GitHub Chief Executive Thomas Dohmke, launched today with $60 million in funding. Felicis led the seed round with participation from Microsoft Corp.’s M12 fund, ...