188 results found
Udemy, an online training company headquartered in the United States, suffered a data breach in April 2026 following a 'pay or leak' extortion attempt...
Trellix, a cybersecurity company, confirmed a breach involving unauthorized access to a portion of its source code repository. The incident was recent...
Dozens of browser extensions have been found to openly sell user data, as disclosed in their privacy policies. The affected organizations are the deve...
A campaign involving 108 malicious Chrome extensions compromised user data by stealing browser sessions and Google account information, while also inj...
Thomson Reuters, a multinational technology and information services company, is facing a class-action lawsuit filed on 2026-05-01 in the U.S. Distric...
A malicious npm dependency was discovered that is linked to an AI-assisted code commit, targeting cryptocurrency wallets. The attack exploits the soft...
A new wave of NFC fraud in Brazil is fueled by the NGate malware, which abuses the legitimate HandyPay Android app to steal contactless payment card d...
Cursor, a developer-focused code editor, experienced a security flaw in its extension system that allowed malicious extensions to steal API keys and s...
Lightning AI, a technology company, suffered a supply chain attack when threat actors compromised the popular Python package Lightning on PyPI. Two ma...
The Lazarus Group, a North Korean state-sponsored threat actor, is targeting macOS users in a campaign leveraging the ClickFix technique for initial a...
Facebook, a technology company, was targeted in a phishing campaign that compromised approximately 30,000 user accounts. The operation, codenamed Acco...
The npm ecosystem was targeted by a supply chain malware attack involving malicious packages that propagated in a worm-like manner. The attack aimed t...