Windows Report

Axios Hack Bypasses GitHub Protections and Installs Hidden Malware on Systems

The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through malicious npm releases. Security researchers from StepSecurity identified ...

'I was naive,' says minister who quit over Labour Together claims

Josh Simons resigned after facing claims a think tank he used to run commissioned a report into journalists' backgrounds.

A major hacking tool has leaked online, putting millions of iPhones at risk. Here’s what you need to know

Here’s what we know, and what you need to know, about Coruna and DarkSword, two advanced iPhone hacking tools discovered by ...

iPhone exploit DarkSword has been released in the wild: How to protect yourself

Uh-oh. Now anyone can easily use it.
Indianapolis Business Journal

Iran conflict raises cyberattack risk, experts say

International conflicts in the physical world can lead to a spike in cyberattacks — both on government entities and on ...
Cybernews

Code trust crisis: Is it safe to update your system during an active supply chain attack?

Language package managers like pip, npm, and others pose a high risk during active supply chain attacks. However, OS updates ...
WinBuzzer

DarkSword iOS Exploit Leaks on GitHub, Threatens Millions

A government-grade iOS exploit kit called DarkSword has been leaked on GitHub, putting hundreds of millions of iPhones ...
Cybernews

Researchers find hundreds of exposed API keys providing access to AWS, GitHub, Stripe, and OpenAI

The exposed keys belonged to major service providers such as AWS, Stripe, and GitHub, and the potential damage ranged from ...

Ajax football club hack exposed fan data, enabled ticket hijack

Dutch professional football club Ajax Amsterdam (AFC Ajax) disclosed that a hacker exploited vulnerabilities in its IT ...

Fake VS Code alerts on GitHub spread malware to developers

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the ...
Decrypt

US Charges Hacker Behind $53 Million Uranium Finance Exploit

The Uranium Finance indictment carries potential prison time of up to 30 years for fraud and money laundering counts.

‘Hack Yourself’ Apple Attack Steals Mac Passwords

A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.