CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across developer systems.

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

Sysdig cited figures from the Zero Day Clock initiative which revealed that median time-to-exploit (TTE) collapsed from 771 ...

Crypto scammers are exploiting the rising visibility of OpenClaw to target developers through a coordinated phishing campaign ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach reports, expert analysis, and actionable insights for infosec professionals and ...

Communication platform Discord is under fire after an identity verification software it used, Persona Identities, was found to have front-end code accessible on the open internet. Nearly 2,500 ...

Discord will treat you like a teen unless its AI can sniff out your real age or you give it sensitive data Discord I’ve never seen patch notes issued for a press release before, but Discord just did ...

What started as a security incident has continued to spiral. New details suggest the impact may be far larger than first believed. Users are now questioning how safe their accounts really are.

Starting in March, all Discord users will be switched to a "teen-appropriate experience" unless they can verify that they're an adult. The social platform is implementing age verification protocols ...

A Python-based malware family known as VVS stealer has been observed using advanced obfuscation and stealth techniques to target Discord users and extract sensitive ...

RedTiger is an open source toolkit built for ethical uses like enterprise security testing, but attackers have weaponized its infostealer to target gamers and harvest gaming and financial account ...