AI-powered tracking of data breach incidents. Stay informed and stay alert.
The npm ecosystem was targeted by a supply chain malware attack involving malicious packages that propagated in a worm-like manner. The attack aimed t...
Trellix, a cybersecurity company, confirmed a breach involving unauthorized access to a portion of its source code repository. The incident was recent...
Cursor, a developer-focused code editor, experienced a security flaw in its extension system that allowed malicious extensions to steal API keys and s...
A new wave of NFC fraud in Brazil is fueled by the NGate malware, which abuses the legitimate HandyPay Android app to steal contactless payment card d...
Thomson Reuters, a multinational technology and information services company, is facing a class-action lawsuit filed on 2026-05-01 in the U.S. Distric...
A malicious npm dependency was discovered that is linked to an AI-assisted code commit, targeting cryptocurrency wallets. The attack exploits the soft...
Lightning AI, a technology company, suffered a supply chain attack when threat actors compromised the popular Python package Lightning on PyPI. Two ma...
Dozens of browser extensions have been found to openly sell user data, as disclosed in their privacy policies. The affected organizations are the deve...
A campaign involving 108 malicious Chrome extensions compromised user data by stealing browser sessions and Google account information, while also inj...
The Lazarus Group, a North Korean state-sponsored threat actor, is targeting macOS users in a campaign leveraging the ClickFix technique for initial a...
Facebook, a technology company, was targeted in a phishing campaign that compromised approximately 30,000 user accounts. The operation, codenamed Acco...
The United Kingdom Government, through its National Cyber Security Centre (NCSC), disclosed a campaign by Russian state-sponsored threat actor APT28 t...