A single fake error report hijacked Claude Code in controlled testing — the agent ran the attacker's code with the developer's full privileges, and not one alert ...
Nissan is warning that it suffered a data breach affecting current and former employees after threat actors exploited an Oracle PeopleSoft vulnerability in data theft attacks previously linked to the ...
New Healthcare Protect Brief reveals 13.3 million remote desktop exploitation attempts and more active ransomware families than any other tracked vertical While attack volumes across most verticals ...
For the second time in as many months, the higher-education sector is assessing the damage from a cyber attack by the data extortion group ShinyHunters against a major software vendor. According to a ...
Security researchers have found a way to hijack AI coding agents with nothing but a fake bug report. They call it Agentjacking. It needs no malware, no stolen password, and no breach of the target.
Oracle PeopleSoft servers are being targeted in ongoing data theft attacks by the ShinyHunters extortion gang, which claims to have stolen data from over 100 organizations. PeopleSoft is an enterprise ...
A flaw in Anthropic’s Claude Code GitHub Action let attackers bypass permission checks via a fake bot account and use prompt injection to steal OIDC tokens, gaining write access to any vulnerable ...
CertiK says May is the third month so far in 2026 to record crypto losses under $100 million. Losses from exploits of crypto platforms fell to $68.3 million in May, down almost 90% from the $650 ...
Before Italo Ferriera and Carissa Moore went on to the podum, finals day at the inaugural Corona Cero New Zealand Pro took a dramatic turn when competition was brought to a standstill after a WSL ...
A popular developer of open source analytics software has revealed that a recent data breach and extortion incident was caused by the Mini Shai-Hulud campaign which compromised TanStack packages.
A so-called software supply chain attack, in which hackers corrupt a legitimate piece of software to hide their own malicious code, was once a relatively rare event but one that haunted the ...
GitHub confirmed on May 20 that a poisoned VS Code extension installed on an employee’s device gave attackers access to roughly 3,800 internal repositories at the Microsoft-owned code storage and ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results