GlassWorm malware uses a Zig-based dropper to infect developer tools, stealing data and spreading across IDEs.

Adobe patches a critical PDF flaw exploited for months, allowing attackers to bypass sandbox protections and deliver malware.

Backed by Sonatype's industry-leading security research team, Sonatype Repository Firewall helped customers prevent 136,107 open source malware attacks in Q1. To explore the full findings from the Q1 ...

CERT-In flags multiple vulnerabilities in Google Chrome that could allow remote code execution and data theft, urging users ...

But the inverse is also true. Software outside the training distribution – industrial control systems, medical device ...

The company has opted not to make its new AI model widely available because of the cybersecurity risks it presents ...

As the way software is built fundamentally changes, Cloudflare introduces the infrastructure to power millions of autonomous, ...

Axios, a widely used JavaScript library, is affected by a new critical vulnerability that enables attackers to chain exploits ...

OpenAI has told users of its Mac software to update their applications after a third-party supply-chain incident touched the company’s app-signing workflow, prompting a wider effort to replace ...

Two Composer flaws (CVE-2026-40176, CVE-2026-40261) allow command execution via Perforce configurations, prompting urgent ...

It's not clear how many people were compromised by this hacking campaign, but a security researcher said the hackers were ...

More than 100 malicious extensions in the official Chrome Web Store are attempting to steal Google OAuth2 Bearer tokens, ...