A “systematic vulnerability pattern” in at least six of the most widely used AI coding assistants can be abused to trick ...
A threat group researchers call "Armored Likho" has gained access to government agencies and electrical power entities in ...
Lazarus Group concealed a four-module remote access toolkit inside six fake npm Rollup polyfill packages that fired at import ...
JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
CISA added CVE-2026-45659 SharePoint Server RCE to KEV following confirmed exploitation, requiring U.S. agencies to patch by ...
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
Z.ai has launched ZCode, a free AI coding tool powered by GLM-5.2 that challenges Cursor, Claude Code and GitHub Copilot ...
Malicious npm packages mimicking Rollup polyfill tooling steal browser data, crypto wallets, and AI tool credentials in a Lazarus-linked campaign.
Infosecurity spoke with the researcher who dumped over 30 proof-of-concept exploits without disclosing the vulnerabilities ...
Armored Likho, a new APT group using AI-generated malware and the BusySnake Stealer to target government agencies and power ...
Agentic coding tools vulnerable to command execution via DNS records ...
Anthropic has introduced Claude Science, a new AI workbench for scientists that integrates research tools, produces auditable artifacts, and connects to specialized life sciences models and workflows ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results