But QR codes can also leave you vulnerable. That’s because scammers, organized criminal gangs, and shady nation-states are ...

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...

Magecart hides payload in favicon EXIF via third-party scripts, bypassing static analysis and stealing checkout data at runtime.

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

The debut of Claude Code Security brought Anthropic into direct competition with the biggest pure-play cybersecurity vendors in the world, and investors have noticed ...

A new open-source tool called Betterleaks can scan directories, files, and git repositories and identify valid secrets using default or customized rules.

AI is getting scary good at finding hidden software bugs - even in decades-old code ...

In quishing attacks, cybercriminals place QR codes containing malicious links in public places, such as parking meters or ...

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.

On Feb. 20, Anthropic released a vulnerability-scanning tool aimed at security applications, leading to an average drawdown of over 5% across our cybersecurity stock coverage as investors worry that ...