Researchers warn malicious packages can harvest secrets, weaponize CI systems, and spread across projects while carrying a dormant wipe mechanism.

Kaspersky Threat Research has revealed its analysis of RenEngine, a malware loader that has recently gained public attention. Kaspersky identified RenEngine samples as early as March 2025, with its ...

A Russian-speaking hacker used GenAI to breach the FortiGate firewalls, targeting credentials and backups for possible ...

A sophisticated Python-based malware deployment uncovered during a fraud investigation has revealed a layered attack ...

A Russian hacker was recently seen brute-forcing their way into hundreds of firewalls - but what makes this campaign really stand out is the fact that the seemingly low-skilled threat actor was able ...

The Arkanix infostealer combines LLM-assisted development with a malware-as-a-service model, using dual language implementations to maximize reach and establish persistence.

It turns out that some participants post .blend files, which are used by the popular Blender open-source 3D modeling system.

ClickFix campaigns have adapted to the latest defenses with a new technique to trick users into infecting their own machines with malware.

Operation Dream Job is evolving once again, and now comes through malicious dependencies on bare-bones projects.

Trusted registries are widely treated as a key component of Software Bill of Materials (SBOM) - driven supply chain security ...

Attackers recently leveraged LLMs to exploit a React2Shell vulnerability and opened the door to low-skill operators and calling traditional indicators into question.