Four vulnerabilities in CrewAI could be chained together via prompt injection for sandbox escape, remote code execution, and ...
After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
North Korean hackers exploit VS Code tasks.json auto-run since Dec 2025 to deploy StoatWaffle malware, stealing data and ...
YouTube killed my comment alerts, so I vibe-coded a fix to get them back - in just 1 hour ...
The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects ...
Third-party resellers and brokers foil transparency efforts and allow spyware to spread despite government restrictions, a ...
Overview Recently, NSFOCUS Technology CERT detected that the GitHub community disclosed that there was a credential stealing program in the new version of LiteLLM. Analysis confirmed that it had ...
AtlasCross RAT spreads via 11 fake domains registered October 27, 2025, enabling encrypted C2 control and persistence.
CERT-EU attributed a 92 GB data breach at the European Commission to TeamPCP, which compromised the Trivy security scanner in a supply chain attack. ShinyHunters leaked the data.
RippleX joins MoonPay's Open Wallet Standard Hackathon with XRPL and RLUSD challenge tracks targeting agentic finance and x402 on-chain settlements. Register April 3.
A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results