The compromise of a version of Bitwarden's CLI is connected to the ongoing Checkmarx supply chain campaign, but differences in the operational methods of both incidents are making it difficult to ...

IntroductionOn March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speaking individuals. Our analysis of this sample ...

Welcome to the era of agentic commerce, where digital agents make purchase decisions, compare options and complete ...

The iot technology stack involves several layers, starting with devices and moving to cloud services, data processing, and ...

A new Kyber ransomware operation is targeting Windows systems and VMware ESXi endpoints in recent attacks, with one variant ...

I found the easiest way to encrypt files on an Android phone - and it's free to do ...

Half of the roughly 6 million FTP servers accessible from the internet today lack encryption, exposing enterprises to ...

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

Attackers published a malicious command-line version of the popular open-source password manager to the npm registry and may ...

The Bitwarden security team confirms that a malicious version of the command-line client was briefly distributed.

Google's Agent Development Kit for Java reached 1.0, introducing integrations with new external tools, a new app and plugin ...