A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, worm-like malware across dozens of packages, security firms say. Named CanisterWorm ...

Top Stories of The WeekGoogle Threat Intel flags ‘Ghostblade’ crypto-stealing malwareGoogle Threat Intelligence has ...

JFrog has uncovered GhostClaw, a fake OpenClaw npm package that stole Keychain passwords, cloud credentials, and crypto wallets from 178 macOS developers.

A suite of new malware tools has been identified by Google Threat Intelligence, including one that can steal crypto private keys and sensitive data.

Google uncovers Apple iOS exploit chain deploying Ghostblade malware targeting crypto apps on unpatched iPhones.

The DarkSword exploit chain affects older versions of iOS 18, delivering malware that specifically hunts for exchange and wallet apps.

ANY.RUN, a leading provider of interactive malware analysis and threat intelligence solutions, has announced the introduction of macOS support. Now available in beta for Enterprise Suite users, this ...

The Google Threat Intelligence Group has posted a report about malware that uses six different security vulnerabilities to attack an iPhone. According to the report, a toolkit called DarkSword has ...

OX Security exposes a GitHub phishing campaign targeting OpenClaw developers with fake $CLAW airdrops and a cloned site built ...

Interlock exploits CVE-2026-20131 zero-day since Jan 26, enabling root access on Cisco FMC, increasing ransomware risks.

The GlassWorm malware made news when it pivoted from exclusively targeting Windows users to also targeting Mac OS users in January, and in the time since, the malware campaign has spread across at ...

Since November, shadowy attackers have been using the 'DarkSword' iOS exploit to hack vulnerable iPhones on certain iOS 18 versions.