GlassWorm malware uses a Zig-based dropper to infect developer tools, stealing data and spreading across IDEs.

Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that ...

Security researchers at Malwarebytes have uncovered a new malware campaign targeting Windows users with a fraudulent clone of Microsoft's site.

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

A widely used JavaScript package used with hundreds of millions of downloads has been compromised in a new supply chain attack to fetch a malware payload for Windows, Linux systems and macOS computers ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver remote access trojans to Linux, Windows, and macOS systems. One malicious ...

IntroductionOn March 31, 2026, Anthropic accidentally exposed the full source code of Claude Code (its flagship ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

Chrome is set to introduce native lazy loading for video and audio, improving performance, speeding up pages, and reducing ...

AI chatbots make it possible for people who can’t code to build apps, sites and tools. But it’s decidedly problematic.

GlassWorm uses a fake WakaTime VS Code extension to infect IDEs, deploy RATs, and steal data, prompting urgent credential ...