A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI ...
A flaw in Anthropic’s Claude Code GitHub Action allowed a malicious GitHub issue from a bot actor to trigger workflows and ...
A github.dev flaw could let attackers steal GitHub OAuth tokens through a one-click attack, exposing private repositories and ...
The incident highlights how attackers can hide malicious code in software packages that differ from the source code available ...
A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
Six Microsoft 365 Android apps contain an identical flaw that could risk billions of downloads being compromised. The ...
Developers will have to contend with a dormant turned active malicious code on Visual Studio Code (VS Code) extensions, which is believed to have compromised thousands of users by stealing credentials ...
New Linux kernel flaw CVE‑2026‑46300 “Fragnesia” allows local attackers to gain root Discovered by William Bowling of Zellic; PoC shows corruption of /usr/bin/su page cache to get root shell Security ...
When it comes to dealing with artificial intelligence, the cybersecurity industry has officially moved into overdrive. Vulnerabilities in coding tools, malicious injections into models used by some of ...
QR code phishing is becoming hard to ignore as attacks grow rapidly. In the first quarter of 2026 alone, "quishing" ...
Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks. The two ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results