News
AI-native Villager, which automates Kali and DeepSeek penetration tests, has reached 11,000 PyPI downloads fueling dual-use ...
AI-powered Villager tool reached 11,000 PyPI downloads since July 2025, enabling scalable cyberattacks and complicating forensics.
The Python Package Index (PyPI) is putting a stop to so-called “domain resurrection attacks” that have been observed in the wild before to launch cyberattacks. Domain resurrection is a supply chain ...
The new AI-native framework, freely available online, could make advanced cyberattacks faster, easier, and more accessible ...
On September 5, 2025, GitGuardian discovered GhostAction, a massive supply chain attack affecting 327 GitHub users across 817 ...
Villager is being pitched as a legitimate AI-powered pentest tool for red teams, but the platform, made by Chinese company Cyberspike, has been loaded almost 11,000 times on PyPI in two months, ...
Attackers abused GitHub Actions workflows to siphon off thousands of credentials from hundreds of npm and PyPI repositories.
According to ReversingLabs' 2025 Software Supply Chain Security Report, 14 of the 23 crypto-related malicious campaigns in ...
Nearly 50 new cancer therapies are approved every year. This is good news. "But for patients and their treating physicians, ...
In a report published today and shared with The Register, the AI security company's Regalado and fellow researcher Amanda ...
A supply chain attack involving malicious GitHub Action workflows has impacted hundreds of repositories and thousands of secrets.
Simple-looking code tapped Ethereum’s blockchain to fetch hidden URLs that directed compromised systems to download ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback