GitHub facades and Ethereum smart contracts power a March 2026 admin-targeted campaign, enabling resilient C2 rotation and ...

LofyGang resurfaces with LofyStealer disguised as Minecraft hack, exfiltrating IBANs and passwords to 24.152.36[.]241, ...

OpenAI is mandating macOS users update ChatGPT Desktop and other apps by May 8, 2026, due to a compromised JavaScript library ...

Google Chrome 浏览器近日正式推出 Prompt API ，开发者可以通过简单 JavaScript 代码，在网页中直接调用内置的 Gemini Nano 模型，实现本地 AI 能力。这一功能在 Hacker News 上引发热议，迅速获得广泛关注，被视为浏览器 AI 能力“民主化”的重要一步。

Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.

GlassWorm, a known malware, has put 73 harmful extensions into OpenVSX's registry. Hackers use it to steal developers' crypto ...

Highly sophisticated scam will leave you questioning what's real while hackers steal your crypto.

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...

A cyber group is impersonating IT helpdesk staff via Microsoft Teams to deploy malware and target corporate systems.

Major Australian ice-cream retailer Gelatissimo has launched an investigation into claims made by hackers that the company ...

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...