A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users ...

Malicious AI browser extensions collected LLM chat histories and browsing data from platforms such as ChatGPT and DeepSeek.

IntroductionIn January 2026, Zscaler ThreatLabz observed activity by a suspected Iran-nexus threat actor targeting government officials in Iraq. ThreatLabz discovered previously undocumented malware ...

Master WS-Federation for enterprise SSO. Learn how Passive Requestor Profiles bridge legacy ASP.NET, SharePoint, and ADFS ...

A large-scale macOS malware campaign is spreading through sponsored Google search results and trusted online platforms. More than 15,000 users have already been exposed to the malicious content, ...

Hackers have launched a convincing, fraudulent CleanMyMac website to trick Mac users into installing SHub Stealer, a malware ...

AI is helping cybercriminals to rapidly assemble malware with flat-pack efficiency. It’s almost like buying a sofa from Ikea, ...

At the start of February, OpenAI upgraded its Codex coding app to give it the ability to manage multiple AI agents. At the ...

The vibe coders are coming for the App Store, one super tiny tool at a time.

I'm done juggling 5 different chat apps ...

There are many apps on our phones that we barely touch, while some apps that are actually beneficial fly under the radar. By 2026, the Google Play Store and the App Store have become so saturated that ...