Microsoft links the recent Mastra AI npm supply chain attack to , a North Korean group known for cryptocurrency theft ...

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...

Microsoft says hotel phishing emails are using Calendly links and photo ZIP files to drop the TonRAT Node.js implant on front ...

Microsoft has attributed a recent Mastra AI supply chain attack that compromised more than 140 npm packages to the North Korean hacking group Sapphire Sleet, also known as BlueNoroff. This attribution ...

Microsoft’s new Surface RTX Spark Dev Box packs Nvidia Blackwell AI power and 128GB of unified memory to run large AI models ...

Tired of trusting strangers with your screenshots?

Your wallet is going to love this list ...

Researchers found 15 malicious JetBrains plugins posing as AI coding tools that exfiltrate OpenAI, DeepSeek, and SiliconFlow ...

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other sensitive data.

Windows Management Instrumentation Command-line (WMIC) is a tool introduced by Microsoft for tracking events on a Windows PC, including hardware, processes, settings, and user accounts. The ...

Aikido Security found at least 15 integrated development environment (IDE) plugins on the JetBrains Marketplace which had ...

Security researchers identified a coordinated malware campaign within the JetBrains Marketplace designed to exfiltrate ...