A new Lua-based malware, called LucidRook, is being used in spear-phishing campaigns targeting non-governmental organizations ...
A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.
Players should take "appropriate security measures to ensure their system is safe. Simply uninstalling the mods is not ...
The design flaw in Flowise’s Custom MCP node has allowed attackers to execute arbitrary JavaScript through unvalidated ...
Anthropic's Claude Code CLI had its full TypeScript source exposed after a source map file was accidentally included in ...
Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...
Within days of each other, Anthropic first leaked the source code to Claude Code, and then a critical vulnerability was found ...
On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
A supply chain compromise involving the widely used JavaScript package Axios is now being tied to a North Korea-linked threat actor, turning what already looked like a serious open-source incident ...
After details of a yet-to-be-announced model were revealed due to the company leaving unpublished drafts of documents and ...
A hacker inserted malware in Axios, an open source web tool downloaded tens of millions of times weekly, in a widespread hack ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results