FBI and Europol Disrupt Lumma Stealer Malware Network Linked to 10 Million Infections

Russian Hackers Exploit Email and VPN Vulnerabilities to Spy on Ukraine Aid Logistics

PureRAT Malware Spikes 4x in 2025, Deploying PureLogs to Target Russian Firms

Fake Kling AI Facebook Ads Deliver RAT Malware to Over 22 Million Potential Victims

Securing CI/CD workflows with Wazuh

The cascading supply chain attack that initially targeted Coinbase before becoming more widespread to single out users of the "tj-actions/changed-files" GitHub Action has been traced further back to the theft of a personal access token (PAT) related to SpotBugs.
"The attackers obtained initial access by taking advantage of the GitHub Actions workflow of SpotBugs, a popular open-source tool for

Headline

SpotBugs Access Token Theft Identified as Root Cause of GitHub Supply Chain Attack

The Hacker News: Latest News