Connect with us
The modern software supply chain is no longer confined to repositories, CI/CD pipelines, or cloud infrastructure. Security researchers are increasingly warning that developer workstations themselves have...
A Chinese national accused of ties to the hacking collective known as Silk Typhoon has been extradited from Italy to the United States, where he faces...
April 2026 — A critical SQL injection vulnerability in the widely used LiteLLM Python package has been actively exploited in the wild just 36 hours after...
April 2026 — Cybersecurity researchers are warning that the ransomware operation known as VECT 2.0 is behaving more like a destructive data wiper than traditional ransomware,...
April 2026 — Security researchers have uncovered a severe and currently unpatched vulnerability in LeRobot, an open-source robotics framework developed under the Hugging Face ecosystem, that...
Cyber threat actors with suspected ties to Iran have compromised the personal email account of FBI Director Kash Patel and carried out a destructive wiper attack...
US and German cybersecurity agencies are urging organizations to address a severe vulnerability discovered in PTC’s Windchill and FlexPLM software products. The flaw, tracked as CVE-2026-4681,...
The threat actor TeamPCP, previously linked to supply chain attacks on Python packages like Trivy, KICS, and litellm, has now targeted the Telnyx Python package, publishing...
A new adversary-in-the-middle (AitM) phishing campaign is targeting TikTok for Business accounts, leveraging evasion techniques to bypass Cloudflare Turnstile protections, according to a report from Push...
North Korean cyber operators linked to the Contagious Interview campaign, also tracked as WaterPlum, are leveraging Microsoft Visual Studio Code (VS Code) projects to distribute a...
