Weeks after being declared eradicated, GlassWorm is again infesting open source extensions using the same invisible Unicode ...

A critical vulnerability in the popular expr-eval JavaScript library, with over 800,000 weekly downloads on NPM, can be ...

A widely-adopted JavaScript library has been found carrying a critical vulnerability which could allow threat actors to execute malicious code, remotely.

What if AI-assisted development is less of a threat, and more of a jetpack? This month’s report tackles vibe coding, along ...

Huntress finds three GootLoader infections since Oct 27, 2025; two led to domain controller compromise within 17 hours.

Besides its lightweight design and compatibility with all major operating systems, a massive collection of extensions is one ...

You have big ideas, dreams, and ambitions. Maybe it’s a concept for a video game that you’ve had for years. A gorgeous ...

Hackers revive GootLoader with a clever font deception that hides malware in plain sight. Learn how this new visual trick slips past defenses.

A critical security vulnerability in the popular JavaScript library expr-eval allows remote code execution. The bug, with a ...

The economics of cybercrime have shifted dramatically. What once took skilled attackers weeks to reverse engineer can now be accomplished in hours using AI-powered analysis tools and automated systems ...

There are plenty of affordable or even free tools available right now that can give your business leverage. They allow you to ...

Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities ...