A large-scale malware campaign is targeting developers on GitHub, using fake Visual Studio Code security alerts to trick users into downloading malicious payloads and exposing system data. According ...

Hackers are using AI to search for bugs in DeFi protocols. They stand to make millions of dollars doing so. Offensive capacity is improving far faster than defensive tooling, veteran DeFi builder says ...

The DarkSword exploit, which primarily targets devices running older iOS versions, has unfortunately made its way to GitHub. It has been patched, so update now. After Coruna, an exploit tool ...

// SetUserAgentMiddlewareName is the middleware name used by SetUserAgentMiddleware. const SetUserAgentMiddlewareName = "user-agent" // SetUserAgentMiddleware is middleware that sets the HTTP header ...

Anthropic’s Claude Code assistant has been abused in a cyberattack against the Mexican government’s systems, Israeli cybersecurity startup Gambit Security reports. As part of the attack, ten Mexican ...

BeyondTrust warns of critical RCE flaw CVE-2026-1731 in RS and PRA Vulnerability allows unauthenticated OS command execution, risking compromise and data exfiltration Patch released February 2, 2026; ...

Hackers have listed 860GB of internal source code belonging to the American retail corporation Target for sale on an underground forum. The attackers allege to have exfiltrated the trove from the ...

The Federal Bureau of Investigation (FBI) is warning about the North Korean hacking group Kimsuky, leveraging QR codes in phishing attacks targeting U.S. and foreign entities. Tracked as APT43, Black ...

The North Korean threat actors associated with the long-running Contagious Interview campaign have been observed using malicious Microsoft Visual Studio Code (VS Code) projects as lures to deliver a ...

DeFi protocols must adopt a more principled approach to security to mature. They could use standardised specifications that constrain what a protocol is allowed to do. Many protocols are already ...