188 results found
A campaign involving 108 malicious Chrome extensions compromised user data by stealing browser sessions and Google account information, while also inj...
Lightning AI, a technology company, suffered a supply chain attack when threat actors compromised the popular Python package Lightning on PyPI. Two ma...
Thomson Reuters, a multinational technology and information services company, is facing a class-action lawsuit filed on 2026-05-01 in the U.S. Distric...
A malicious npm dependency was discovered that is linked to an AI-assisted code commit, targeting cryptocurrency wallets. The attack exploits the soft...
Cursor, a developer-focused code editor, experienced a security flaw in its extension system that allowed malicious extensions to steal API keys and s...
The npm ecosystem was targeted by a supply chain malware attack involving malicious packages that propagated in a worm-like manner. The attack aimed t...
A new wave of NFC fraud in Brazil is fueled by the NGate malware, which abuses the legitimate HandyPay Android app to steal contactless payment card d...
The Lazarus Group, a North Korean state-sponsored threat actor, is targeting macOS users in a campaign leveraging the ClickFix technique for initial a...
Vercel, a frontend cloud platform, disclosed a security incident stemming from a compromise at Context.ai, a connected third-party application. The br...
Itron, a utility-technology firm headquartered in the United States, disclosed a digital intrusion in a filing with federal regulators on April 27, 20...
Amtrak, a United States passenger railroad service, suffered a data breach disclosed in April 2026. The incident exposed over 2.1 million unique email...
Telnyx, a communications technology company, experienced a supply chain attack through its Python package repository. The malicious versions 4.87.1 an...