Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...

Elastic Security Labs quickly spotted the unfolding supply-chain attack that backdoored the popular JavaScript library Axios, ...

Amazon has launched a new Fire TV Stick HD. It's moving to a new operating system called Vega OS instead of the long running ...

Vercel breached after attacker compromised Context.ai, hijacked an employee's Google Workspace via OAuth, and accessed ...

GlassWorm malware uses a Zig-based dropper to infect developer tools, stealing data and spreading across IDEs.

Malwarebytes recently uncovered a new malicious campaign targeting the Windows Update service. Focused on French-speaking users, the campaign uses layered obfuscation techniques to deliver multiple ...

GHENT, Belgium, April 20, 2026 (GLOBE NEWSWIRE) -- Aikido Security today launched Aikido Endpoint, a lightweight security agent that protects developer devices against software supply chain attacks by ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a cross-platform RAT. Axios sits in 80% of cloud environments. Huntress confirmed ...

A new LOTUSLITE malware campaign is targeting India’s banking sector using phishing files and trusted tools. Researchers say ...

I installed it to test, then stopped opening my old download managers.

We tested Clym's free, open-source accessibility testing suite. An honest review of what it covers, how it works, and whether ...

In this March 3 memo from City Manager Alana Lake to Helena City Commissioners, Lake previewed what $900,000 in firefighter ...