Researchers say a prompt injection bug in Google's Antigravity AI coding tool could have let attackers run commands, despite ...

Elastic Security Labs quickly spotted the unfolding supply-chain attack that backdoored the popular JavaScript library Axios, ...

How A Roblox Cheat Triggered A $2 Million Breach At Vercel. Why The Vercel Incident Changes The Economics Of Enterprise AI ...

A ClickFix campaign targeting macOS users delivers an AppleScript-based infostealer that collects credentials and live ...

Bybit has disclosed details of a multi-stage macOS malware campaign targeting users searching for “Claude Code”.

Two phishing campaigns, each using a different stealthy infection technique, are targeting organizations in attacks which aim ...

GHENT, Belgium, April 20, 2026 (GLOBE NEWSWIRE) -- Aikido Security today launched Aikido Endpoint, a lightweight security agent that protects developer devices against software supply chain attacks by ...

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...

The supply chain attack on third-party library Axios has forced OpenAI to revoke its code-signing certificate and require ...

An attacker purchased 30+ WordPress plugins on Flippa, planted backdoors that lay dormant for eight months, then activated ...

Backed by Sonatype's industry-leading security research team, Sonatype Repository Firewall helped customers prevent 136,107 open source malware attacks in Q1. To explore the full findings from the Q1 ...

OpenAI rotated certificates and updated its apps out of an abundance of caution.