UNC6692 has been attributed to a large email campaign that's designed to overwhelm a target's inbox with a flood of spam ...

Used in attacks against energy and utilities organizations, Lotus Wiper can overwrite drivers, delete files, and cripple ...

Lazarus Group is targeting fintech and crypto executives using macOS through a new malware kit delivered via social ...

Lotus Wiper hit Venezuela’s energy sector in late 2025, exploiting pre-Windows 10 1803 systems, wiping drives and crippling ...

Two newly discovered macOS threats are designed to harvest developer credentials and cloud access as attackers focus on ...

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready ...

A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability ...

Fake Antigravity downloads are enabling fast account takeovers using hidden malware and stolen session cookies.

ClickFix attacks targeting Mac users now use Script Editor instead of Terminal, a shift that sidesteps Apple's latest protections and streamlines the attack.

Fake packages aim to steal data, credentials, and secrets, and to infect every package created using them, in what could be ...

North Korean hackers used AppleScript and ClickFix in recent attacks targeting macOS systems at financial organizations.