A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler.

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

Attackers weaponized critical RCE within hours, prompting CISA to add the flaw to its KEV catalog and set an urgent patch ...

Three LangChain flaws enable data theft across LLM apps, affecting millions of deployments, exposing secrets and files.

Threats actors pounced on the vulnerability within hours of its disclosure, demonstrating that organizations have little time ...

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...

The common assumption among iPhone security experts has been that finding vulnerabilities and developing exploits for iOS was ...

Popular Python package LiteLLM compromised in supply chain attack Malicious updates (v1.82.7, v1.82.8) deployed TeamPCP Cloud Stealer infostealer Attack harvested cloud credentials, Kubernetes secrets ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Threat actors have demonstrated just how quickly they operate today after exploiting a critical open source vulnerability ...