Cybersecurity

A phishing campaign uses fake, obfuscated French-language resumes to deliver malware that mines cryptocurrency and steals data.The attack chain completes in just 25 seconds...

Credential-stealing malware known as "TeamPCP Cloud stealer" has compromised GitHub Actions workflows from Checkmarx, following a similar attack on Aqua Security's Trivy scanner.The stealer...

Russian access broker Aleksei Volkov was sentenced to 6.75 years in U.S. prison for enabling ransomware attacks causing over $9 million in losses.U.S. prosecutors...

Threat actor TeamPCP has distributed malicious versions of the Trivy vulnerability scanner on Docker Hub, with versions 0.69.4, 0.69.5, and 0.69.6 containing an infostealer.The...

Hackers linked to the TeamPCP operation have unleashed a self-propagating malware worm called CanisterWorm across numerous npm packages.The worm uses an ICP canister on...

The U.S. CISA has added five actively exploited security flaws impacting Apple, Craft CMS, and Laravel Livewire to its catalog, requiring federal agencies to...

Apple is urging users of outdated iOS versions to update their iPhones immediately to protect against powerful web-based exploit kits, Coruna and DarkSword.These attacks,...

A new Android malware called Perseus is actively targeting cryptocurrency and banking users through dropper apps distributed via phishing sites.The malware, derived from Cerberus...