A North Korean APT has crafted malicious software packages to appeal to AI coding agents, while ‘slopsquatting’ shows the ...

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

MESCIUS USA Inc., a global provider of award-winning enterprise software development tools, is pleased to announce the Wijmo 2026 v1 release. The first major release of 2026 yields major accessibility ...

The threat actor seeding the Open VSX code marketplace with fraudulent extensions that download the GlassWorm malware has ...

In March 2026, someone hijacked a maintainer account for Axios, a JavaScript HTTP library downloaded more than 45 million ...

Apple today released a new update for Safari Technology Preview, the experimental browser that was first introduced in March ...

Recordly is a desktop app for recording and editing screen captures with motion-driven presentation tools built in. Recordly has emerged as one of the most compelling free alternatives to paid tools ...

GitHub has introduced a significant update to its CodeQL engine, enabling developers to define custom sanitizers and ...

Adobe patches a critical PDF flaw exploited for months, allowing attackers to bypass sandbox protections and deliver malware. Users urged to update now.

GitHub facades and Ethereum smart contracts power a March 2026 admin-targeted campaign, enabling resilient C2 rotation and ...

Security experts reveal how easy it is to get fooled by this scam and what to do if you think you've been targeted.

In the first five months of 2026, security researchers have flagged more malicious packages on the npm registry than in all ...