Hackers push fake apps with malware in Google searches

Hackers use fake Google search results to trick users into downloading lookalike apps laced with malware that have been ...

One line of malicious npm code led to massive Postmark email heist

It appears, however, that the developer took the legitimate code from the Postmark MCP server's GitHub repository, added the ...
The Hacker News

First Malicious MCP Server Found Stealing Emails in Rogue Postmark-MCP Package

According to Koi Security, a legitimate-looking developer managed to slip in rogue code within an npm package called " ...
CSO Online

Chinese hackers breached critical infrastructure globally using enterprise network gear

RedNovember group exploited VPN appliances and firewalls to hit defense contractors, government agencies, and manufacturers ...
The Hacker News

⚡ Weekly Recap: Cisco 0-Day, Record DDoS, LockBit 5.0, BMC Bugs, ShadowV2 Botnet & More

Cybersecurity agencies warned that threat actors have exploited two security flaws affecting Cisco firewalls as part of zero-day attacks to deliver previously undocumented malware families like ...