TanStack has released a detailed postmortem describing a sophisticated supply-chain attack that compromised 42 npm packages ...

Laravel-Lang compromise tagged 700+ versions on May 22–23, 2026, triggering PHP stealers that exfiltrate credentials.

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. When it was reported that Gmail passwords were amongst a batch ...

The personal information of thousands of Citizens Bank customers has been compromised in a data breach that targeted a third-party company.

Do you own an Asus router? If so, your device may have been one of thousands compromised in a large campaign waged by cybercriminals looking to exploit it. In a blog post published May 28, security ...

WASHINGTON/LONDON, July 21 (Reuters) - A sweeping cyber espionage operation targeting Microsoft (MSFT.O), opens new tab server software compromised about 100 organizations as of the weekend, two of ...

Threat actors are openly advertising access to hacked websites as part of the underground economy. One of the most promising products is a compromised cPanel credential. They are sold in the thousands ...

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Password manager company Bitwarden confirms NPM package compromise. The advice has been ...

News broke today about "one of the largest data breaches in history," sparking wide media coverage filled with warnings and fear-mongering. However, it appears to just be a compilation of previously ...

Data from the North Carolina’s student and teacher information system — containing personal and private information about the state’s schoolchildren and teachers — was compromised last month, but ...