Threats actors pounced on the vulnerability within hours of its disclosure, demonstrating that organizations have little time ...

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...

On the morning of March 24, 2026, tens of thousands of software developers working on AI applications were unknowingly exposed to malware.

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Supply chain attacks feel like they're becoming more and more common.

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

Abstract: Android malware poses a persistent and evolving threat to mobile security, considering its capability to compromise sensitive user data and evade traditional detection methods. While ...

GitHub hosts powerful open source apps you can use daily, from Immich for photo backups and Upscayl for image upscaling to VERT for file conversion, BC Uninstaller for cleanup, Mole for Mac storage, ...

Two years after revamping its developer programs and pricing, X is expanding the closed beta of a pay-per-use plan for its API to more developers. The social network is accepting applications from ...

Hidden comments in pull requests analyzed by Copilot Chat leaked AWS keys from users’ private repositories, demonstrating yet another way prompt injection attacks can unfold. In a new case that ...