The GhostAction attack on GitHub saw 3,325 secrets stolen from 327 accounts, as attackers planted a malicious Actions workflow to snatch keys and tokens—here’s what happened and how it was stopped.
More than a dozen high-profile npm packages were compromised in a sweeping supply chain attack, affecting 2 billion weekly downloads and targeting crypto users—here’s what happened and how it works.
Jaguar Land Rover’s operations experienced major disruption after a cyberattack forced system shutdowns and plant closures, with investigations ongoing and no customer data breach confirmed.
WhatsApp has issued security patches for iOS and Mac to resolve zero-click vulnerabilities exploited in a targeted spyware campaign, urging users to update immediately.
You might want to rethink that free movie night. Microsoft just exposed a massive malvertising operation that’s already infected over...
CyberNews researchers have uncovered a massive breach exposing 1.5 billion records from brands like JD.com and Weibo, raising serious data security concerns.
Federal agencies face constant cyber attacks through innocent-looking files. Arcfield's PuriFile v10 spots and stops these threats before they can cause damage, making cross-agency information sharing safer.
Inkan.link introduces Sealfie at CES 2025, a simple yet revolutionary tool to combat BEC, using selfies for transaction verification amidst rising fraud threats.
