The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through malicious npm releases. Security researchers from StepSecurity identified ...

Dangerous iPhone hack code tied to DarkSword has reportedly leaked onto GitHub, raising fresh risks for users with older ...

Leaked "DarkSword" exploits published to GitHub allow hackers and cybercriminals to target iPhone users running old versions ...

Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor ...

Trivy supply chain attack pushed malicious Docker images on March 22, enabling credential theft and worm spread, impacting ...

Have you been dragging your feet on the update to iOS 26? You might want to do it now to fend off the 'DarkSword' attack ...

The malware at the center of it, dubbed Omnistealer by investigators, uses public blockchains not just for payments, but as ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Here’s what we know, and what you need to know, about Coruna and DarkSword, two advanced iPhone hacking tools discovered by ...

The DarkSword exploit, which primarily targets devices running older iOS versions, has unfortunately made its way to GitHub.

DarkSword has been used by hackers to target users in Saudi Arabia, Turkey, Malaysia and Ukraine, finds Google's threat intelligence team.

The TeamPCP hacking group has been using credentials stolen in the recent OSS campaign to enumerate and compromise AWS ...