On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Banned from Reddit and accused of phishing critics, Canadaland’s founder is leading a chaotic 'investigation' into an army of sockpuppet accounts ...

Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are ...

WebRTC skimmer exploits PolyShell flaw since March 19, hitting 56.7% stores, enabling stealth data theft bypassing CSP.

Adobe Creative Cloud secretly modifies users' hosts files without permission, adding detection entries that trigger security ...

An Act Respecting Lawful Access. It marks the 10th attempt by successive governments to establish a framework under which law ...

The Tycoon 2FA phishing platform’s operations have been largely unaffected by the recent law enforcement takedown attempt.

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...

The maintainer account for the axios package on npm was compromised to inject a remote access trojan for Windows, macOS, and ...

For many manufacturers, their most valuable IP is not something they could or even should patent but rather is the accumulated knowledge of how to run their operations better than anyone else.

After years of putting the building blocks in place, Stop Scams is ready and able to react quickly to fight emerging fraud threats ...