User loses $282M in one of the largest social engineering crypto heists

A crypto user lost over $282 million in Bitcoin and Litecoin after being deceived into sharing a hardware wallet seed phrase, ...

StealC hackers hacked as researchers hijack malware control panels

A cross-site scripting (XSS) flaw in the web-based control panel used by operators of the StealC info-stealing malware ...
The Hacker News

GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection

GootLoader malware is abusing malformed ZIP archives that bypass common tools like WinRAR & deliver JavaScript payloads via ...

How to Protect Your Credit Cards From 'Web Skimming' Scams

Web skimming is a cyberattack that steals credit card data during a checkout. Researchers have identified an ongoing campaign ...
PCMag

From AI Coding to QR Code Scams, 2026 Is Already a Security Nightmare

AI coding agents with exploitable vulnerabilities, cybercrime rings operating like professional enterprises, and new scam ...
The Hacker News

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories ...
InfoWorld

From typos to takeovers: Inside the industrialization of npm supply chain attacks

A dramatic spike in npm-focused intrusions shows how attackers have shifted from opportunistic typosquatting to systematic, credential-driven supply chain compromises — exploiting CI systems, ...
Security Boulevard

Silent Push Exposes Magecart Network Operating Since Early 2022

Silent Push reveals a sophisticated Magecart network using web skimmers to steal credit card data from online shoppers, highlighting the need for enhanced cybersecurity measures.
GitHub

An open-source reverse proxy inspired by Cloudflare, featuring a JavaScript Challenge to block malicious bots, web crawlers, and mitigate CC attacks.

There was an error while loading. Please reload this page.