Security researchers found malware packages using the Ethereum blockchain to conceal malicious commands on GitHub repos.

Sangoma released emergency patches for a critical zero-day vulnerability (CVE-2025-57819) exploited to hack FreePBX servers.

An international research team from the Max Planck Institute (MPI) for Informatics in Saarbrücken, Germany, and the Delft ...

Attempted hack at University of St. Thomas turns online servers dark days ahead of fall semester University information did not appear to be compromised, officials said.

By infecting a calendar invite with instructions for Google's Gemini AI, hackers were able to take over a stranger's smart home remotely.

The three smart-home hacks are part of a series of 14 indirect prompt-injection attacks against Gemini across web and mobile that the researchers dubbed Invitation Is All You Need.

Tracebit analysts uncover a two-stage process that could allow a threat actor to access a developer’s entire terminal ...

The Python Software Foundation warned users this week that threat actors are trying to steal their credentials in phishing attacks using a fake Python Package Index (PyPI) website.

A hacker recently injected code into Amazon Q in order to warn users of the platform’s potential security flaws. But the outcome could have been much worse.

WASHINGTON - A sweeping cyber-espionage campaign organisation centred on vulnerable versions of Microsoft’s server software has now claimed about 400 victims, according to researchers at ...

Hackers exploited a major security flaw in widely used Microsoft server software to launch a global attack on government agencies and businesses.

A cyber-espionage campaign centered on vulnerable versions of Microsoft's server software now involves the deployment of ransomware, Microsoft said in a late Wednesday blog post.