Talos details ARToken, a PhaaS panel tied to EvilTokens that supports device code phishing, BEC workflows, SharePoint theft, ...
ActiveState explains how GitHub Actions attack chains can evade traditional CI security scanners, why passing a scan doesn't ...
Summer.fi lost about $6M in an ongoing exploit detected by Blockaid, raising fresh concerns over DeFi platform security.
JadePuffer could be the first reported case of a ransomware attack driven by AI from start to finish. How can businesses ...
Learn how EvilTokens hides Microsoft 365 phishing behind browser-side decryption and how browser-level analysis helps SOC ...
has documented what it says is the first ransomware operation carried out from start to finish by an autonomous artificial ...
North Korean hackers are targeting open source software developers with a backdoor and an information stealer as part of a ...
Sysdig’s Threat Research Team has uncovered what may be the first documented evidence of agentic ransomware. The complex attack, which the team is calling Jade Puffer, was carried out entirely by a ...
Securonix uncovers the Veil#Drop malware framework, which abuses compromised websites and Google Blogspot to deploy the PureLog information stealer.
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
JFrog's security research lab, based in Silicon Valley, said Friday (local time) it had discovered six malicious packages in ...
The campaign spans npm, Packagist, Go, and Chrome, using obfuscated JavaScript loaders and VS Code tasks to deliver malware.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results