The vulnerability is now tracked as CVE-2025-13223 and has a severity score of 8.8/10 (high). "Type Confusion in V8 in Google ...

Tsundere botnet spreads via MSI and PowerShell installers, using Ethereum-based C2 rotation and game-themed lures to target ...

China-linked APT24 hackers have been using a previously undocumented malware called BadAudio in a three-year espionage campaign that recently switched to more sophisticated attack methods.

Web scraping tools gather a website's pertinent information for you to peruse or download. Learn how to create your own web ...

Agent HQ provides a single location for managing both local and remote coding agents and introduces a plan agent that breaks ...

Google has issued an urgent warning to billions of Chrome users worldwide to alert them to a zero-day flaw. Here’s what it is and how to secure your device.

Chrome has suffered two other confirmed zero days in the V8 engine in 2025, from a tally of seven across Chrome as a whole. The V8 flaws were CVE-2025-5419 in June and CVE-2025-10585 in September.

Huntress finds three GootLoader infections since Oct 27, 2025; two led to domain controller compromise within 17 hours.

The long-running Contagious Interview campaign is now hiding BeaverTail and InvisibleFerret payloads inside JSON storage ...

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser ...

Besides its lightweight design and compatibility with all major operating systems, a massive collection of extensions is one of the biggest perks of VS Code. While the code editor is fairly powerful ...

Weeks after being declared eradicated, GlassWorm is again infesting open source extensions using the same invisible Unicode and blockchain C2 tricks.