Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...
"The C2 hosts a web-based graphical user interface (GUI) titled 'NEXUS Listener' that can be used to view stolen information ...
Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell ...
Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.
With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...
The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...
The campaign is stealing credentials from unpatched servers at scale, due to “neglect and efficiency,” says analyst, and the ...
How close are we to the sci-fi vision of autonomous humanoid robots? I visited 11 companies in five Chinese cities to find out ...
The Medusa ransomware group is operating at a fast pace by leveraging zero-days and quickly exploiting new bugs and breached ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results