ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be the first documented case of attackers abusing the Deno JavaScript runtime ...

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.

Hackers have a new tool called ClickFix. The new attack vector combines fake human-verification prompts with malware, trying to trick users into running Terminal commands that bypass macOS security.

Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft ...

AI is supercharging cloud cyberattacks - and third-party software is the most vulnerable ...

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.

Indonesia has become the latest and most populous country to say it will ban social media for under-16s.

GhostClaw poses as an OpenClaw installer package, stealing system credentials and sensitive data before deploying a persistent RAT.

Google and iVerify have shared details about Coruna, an exploit kit that chains multiple vulnerabilities to target iPhones ...

Half of all websites fail basic keyboard navigation. Microsoft's new browser tool wants to change that — and it only takes ...

Google reveals Coruna, a powerful exploit kit targeting older iOS versions to bypass security, install malware, and steal ...

IntroductionThreat actors often take advantage of major global events to fuel interest in their malicious activities. Zscaler ThreatLabz is diligently tracking a surge in cybercriminal activity that ...