A new exploit kit for iOS devices and delivery framework dubbed "Darksword" has been used to steal a wide range of personal information, including data from cryptocurrency wallet app.

Hundreds of GitHub repositories seemingly offering “free game cheats” deliver malware, including the Vidar infostealer, ...

Hackers exploited a compromised npm package to breach cloud systems and gain full AWS administrator access within 72 hours.

UNC6426 used stolen GitHub tokens from the 2025 nx npm breach to gain AWS admin access in under 72 hours, enabling data theft and cloud destruction.

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Generative AI tools analyzed target networks and wrote exploit code, enabling an opportunistic attacker to have an outsized ...

Threat actors are actively exploiting a critical vulnerability in the Post SMTP plugin installed on more than 400,000 WordPress sites, to take complete control by hijacking administrator accounts.

Sen. Chris Van Hollen (D-Md.) discusses what he views as threats to free speech following the brief suspension of late-night host Jimmy Kimmel and the Trump ...

Add Yahoo as a preferred source to see more of our stories on Google. Sen. Chris Van Hollen (D-Md.) discusses what he views as threats to free speech following the brief suspension of late-night host ...