The campaign, observed in February 2026, has been assessed to share overlaps with a prior campaign mounted by Laundry Bear, a group tracked by Microsoft as Void Blizzard.

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

GitLab exposes abuse of its platform to trick software developers into downloading malicious payloads and finance companies ...

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be ...

GhostClaw poses as an OpenClaw installer package, stealing system credentials and sensitive data before deploying a persistent RAT.

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...

Preemptive cyber defense startup Silent Push Inc. today announced the launch of Traffic Origin, a cybersecurity solution designed to shift an organization’s security posture from reactive to proactive ...

Mojang Studios announced Tuesday it will eliminate code obfuscation in Minecraft: Java Edition, marking a significant shift in how the company distributes the game to its modding community. The change ...

Add a description, image, and links to the javascript-obfuscator-library topic page so that developers can more easily learn about it.

New AI Innovation Combines Risk-based Insights, Actionable Recommendations, Instant Justifications, and Interactive Chat to Accelerate Compliance with PCI DSS v4 Anti-Skimming Requirements PORTO, ...

Editor's note: The IAPP is policy neutral. We publish contributed opinion and analysis pieces to enable our members to hear a broad spectrum of views in our domains. Not only has compliance become ...