Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...
Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.
CVE-2026-5426 enabled KnowledgeDeliver LMS attacks before February 24, 2026, leading to Cobalt Strike infections.
The Shai-Hulud supply-chain malware campaign is exploiting the automated systems developers trust to publish software safely.
Agnomy is designed by a farmer for farmers, offering them a platform to easily find and book ag services near them.
Hulud payload to steal CI/CD secrets from Linux-based automation environments. The malware executes during npm install and ...
Everyone’s entitled to their opinion, but I don’t think that’s at all true.” Here's what the AWS CEO has to say about ...
With binding cut targets scrapped, the European Union's pledge to halve pesticide use is stalling — even as controversial chemicals like glyphosate remain on sale across the bloc. Three years ago, the ...
The disguised apps use WebView automation, JavaScript injection, and OTP interception to avoid detection and complete fraudulent subscriptions.
Developer platform Socket says a malware called TrapDoor is targeting crypto and AI developers across npm, PyPI and Crates, aiming to steal crypto wallet info and browser data.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results