The website for the popular JDownloader download manager was compromised earlier this week to distribute malicious Windows ...

GitHub is investigating a breach of its internal repositories after the TeamPCP hacker group claimed to have accessed ...

Fox Tempest is a financially motivated threat actor operating a malware‑signing‑as‑a‑service (MSaaS) used by other ...

The exploit code was almost too neat. When Google’s Threat Intelligence Group flagged a previously unknown software ...

Machine learning techniques for Android malware detection have evolved markedly over the past decade, offering sophisticated mechanisms to identify malicious applications with high accuracy and low ...

Google says attackers are using AI for zero-day research, malware development, reconnaissance, and access to premium AI tools ...

Scammers built a convincing fake Windows update site that installs password-stealing malware. Learn how the multi-stage attack works and how to stay safe.

A malicious repository on Hugging Face impersonated OpenAI’s “Privacy Filter” project and briefly reached the platform’s top trending position before removal ...

Hugging Face hosts 352,000 unsafe model issues. ClawHub's registry contains 341 malicious AI agent skills. The AI supply chain is now the most attractive target in software security.

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...

Google found the first known zero-day exploit it believes was built using AI. The exploit targets two-factor authentication (2FA) on an open-source admin tool. State sponsored hackers from China and ...