The popular free text editor Notepad++ has a serious problem: its updater infects computers with malware. There's a fix ...

ESET researchers discovered a China-aligned APT group, LongNosedGoblin, which uses Group Policy to deploy cyberespionage ...

A new variant of the MacSync Stealer uses a code-signed Swift application to get around Apple's macOS Gatekeeper protections.

Container image scanning has come a long way over the years, but it still comes with its own set of, often unique, challenges ...

Recent Notepad++ releases address a vulnerability that has allowed threat actors to hijack the free source code editor’s ...

The MacSync Stealer has transitioned from a ClickFix variant to a more sophisticated code-signed malware capable of bypassing traditional macOS ...

The insecure use of an uninstaller during the removal of JumpCloud Agent on Windows can be exploited to obtain System ...

A new campaign involving 19 malicious Visual Studio Code extensions used a legitimate npm package to embed malware in ...

Researchers uncover malware campaigns using cracked software and compromised YouTube videos to deliver CountLoader, GachiLoader, and info stealers.

Attackers are exploiting a Flight protocol validation failure that allows them to execute arbitrary code without ...

Apache Commons Text is used for processing character strings in Java apps. A critical vulnerability allows the injection of ...