JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

Security researchers found malware packages using the Ethereum blockchain to conceal malicious commands on GitHub repos.

Hackers exploited Kiln’s API to drain 193,000 SOL ($41M) from SwissBorg’s Solana Earn program. The firm pledged ...

Following the latest Google data breach, there are several steps you can take to protect your Gmail account and the rest of ...

A major JavaScript supply chain attack targeting crypto wallets through compromised GitHub packages has stolen only $1,043.

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...

Cybersecurity professionals at HiddenLayer exposed a sophisticated attack method dubbed the "CopyPasta License Attack" ...

On September 5, 2025, GitGuardian discovered GhostAction, a massive supply chain attack affecting 327 GitHub users across 817 ...

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

If your PayPal account has been hacked, every minute counts. We show you what immediate measures you need to take and how you ...

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, ...