Adobe patches a critical PDF flaw exploited for months, allowing attackers to bypass sandbox protections and deliver malware.

What makes this attack so unsettling is that all the hackers had to do was just steal the password of one of the axios ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

Apple has released critical updates for millions of iPhone and iPad users to combat the 'DarkSword' hacking toolkit. This ...

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through ...

Security researchers at Malwarebytes have uncovered a new malware campaign targeting Windows users with a fraudulent clone of Microsoft's site.

The leak provides competitors—from established giants to nimble rivals like Cursor—a literal blueprint for how to build a ...

WordPress's massive installed base isn't going anywhere, but many developers and AI agents are not opting for the product for new sites. Will they go for Cloudflare instead?

How many browsers extensions do you have running? Most enterprise users have at least one and seven out of ten have seen an extension expand its permissions over the last 12 months—with AI extensions ...

Phishing surge, LinkedIn tracking claims, spyware use, and rising stealers expose growing abuse of trusted systems.