A worm-like campaign named Shai-Hulud has been flagged, targeting widely used packages and propagating itself by harvesting secrets and inserting backdoors. It operates across npm accounts, installing ...

Cybercriminals are hijacking trusted remote monitoring and management tools to bypass defenses, gain persistent access and ...

A critical zero-day vulnerability in Oracle E-Business Suite (EBS) was exploited by the Cl0p ransomware group in mid-2025.

Cybersecurity researchers have discovered a new ‘Stealit’ info-stealing malware campaign that exploits an experimental Node.js feature.