Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft ...

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.

GhostClaw poses as an OpenClaw installer package, stealing system credentials and sensitive data before deploying a persistent RAT.

Google and iVerify have shared details about Coruna, an exploit kit that chains multiple vulnerabilities to target iPhones ...

The open-source project npmx is used for fast searching of npm packages. It focuses on UX, displays vulnerability warnings, and offers a dark mode.

Half of all websites fail basic keyboard navigation. Microsoft's new browser tool wants to change that — and it only takes one HTML attribute to do it. The post Microsoft’s new browser tool will make ...

Where are private companies focusing their investment efforts? That’s the question we asked 100 private company C-suite leaders in a Deloitte Private pulse survey. The survey findings reveal a clear ...

Anthropic’s moral stand on U.S. military use of artificial intelligence is reshaping the competition between leading AI ...

IntroductionThreat actors often take advantage of major global events to fuel interest in their malicious activities. Zscaler ThreatLabz is diligently tracking a surge in cybercriminal activity that ...

A previously undocumented set of 23 iOS exploits named "Coruna" has been deployed by multiple threat actors in targeted espionage campaigns and financially motivated attacks.

Google speeds up Chrome’s release cycle to biweekly updates, a move affecting 3 billion users as AI-powered browsers like Atlas and Comet emerge.