Fake Claude Code installer malware used Google Ads to place spoofed AI tool pages above real documentation since March 2026.
Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
The web version of the VS Code editor on GitHub.dev had a security vulnerability that allowed attackers to take over all of a ...
Days after IBM and Red Hat announced a master security plan for open-source software, Red Hat suffers a major breach of its ...
A researcher has disclosed details of a severe VS Code vulnerability that can be exploited to steal GitHub tokens and access ...
VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.
Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard ...
CVE-2026-5426 enabled KnowledgeDeliver LMS attacks before February 24, 2026, leading to Cobalt Strike infections.
A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...
D Yet another aggrieved bug hunter has leaked a vulnerability affecting a Microsoft product after becoming disillusioned with ...
A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results