Card skimmers were found in 1x1 pixel SVG images, apparently deployed through PolyShell.

Just when you thought 3D printing had reached its limits, researchers are now reaching into unseen realms — literally. A new experimental initiative at the University of Western Oslo’s Advanced ...

On March 19, 2026, Trivy, Aqua Security’s widely used open-source vulnerability scanner, was reported to have been compromised in a sophisticated CI/CD-focused supply chain attack. Threat actors ...

Attackers are increasingly abusing Cascading Style Sheets (CSS) to insert hidden text and characters into emails in a tactic designed to bypass filters and slip spam and other malicious messages past ...

On 29 August 2025, Huntress analysts encountered a previously unseen ransomware variant called “Obscura.” This name was taken from the ransom note (README_Obscura.txt), which also made several ...

Docs link: https://platform.openai.com/docs/guides/images-vision?api-mode=responses&format=base64-encoded While running the code sample, https://github.com/justinyoo ...

A new phishing campaign leveraging SVG files to deliver JavaScript-based redirect attacks has been uncovered by cybersecurity researchers. The attack utilizes seemingly benign image files to conceal ...

Cybersecurity researchers from SafeDep and Veracode detailed a number of malware-laced npm packages that are designed to execute remote code and download additional payloads. The packages in question ...

Weaver Ant, a cyberespionage-focused APT operating out of China, is targeting telecom providers for persistent access. Cyber response firm Sygnia warns of a newly identified China-linked APT that ...