December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...
Researchers uncovered 27 malicious npm packages used over five months to host phishing pages that steal credentials from ...
December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.
Apple’s App Store source map leak shows a preventable risk we found in 70% of organizations shipping production web apps.
The key themes that defined the year behind us will also shape the one ahead. The most-read articles of 2025 tracked a return ...
Uncover the reasons behind the "crypto is not defined" error in Jest testing environments, explore its common causes in ...
A new wave of the GlassWorm malware is now targeting macOS developers by hiding malicious code inside fake Visual Studio Code ...
Hackers behind the Shai Hulud malicious npm JavaScript campaign are likely testing a new variant of the malware. Security ...
The European Space Agency (ESA) confirmed that attackers recently breached servers outside its corporate network, which ...
A fourth wave of the "GlassWorm" campaign is targeting macOS developers with malicious VSCode/OpenVSX extensions that deliver ...
A China-linked threat actor used malicious browser extensions over seven years to steal data and corporate intelligence from ...
The European Space Agency (ESA) has confirmed a cybersecurity breach with a threat actor claiming to have pilfered ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback