This document describes the security content of macOS Ventura 13.2.1.

Phylum discovers over 451 unique malicious packages targeting popular PyPI packages like Selenium.

Rather than match iOS's tracking limits, Google built an additional tracking system.

Possible RCE and denial-of-service issue discovered in Kafka Connect

 Today, we are releasing the following critical patch versions for ClamAV: 0.103.8 0.105.2 1.0.1 ClamAV 0.104 has reached end-of-life accord...

Learn how I hijacked the explorer context menu to execute my beacon at each right click on a file/folder.

Atlassian has confirmed that a breach at a third-party vendor caused a recent leak of company data and that their network and customer information is secure.

We observed Mirai variant V3G4 targeting IoT devices in three separate campaigns in 2022.

Malware injects malicious code into Failed Request Event Buffering module in order to monitor HTTP requests from attacker.

illustria’s research team finds a popular npm package with nearly 4 million weekly downloads, vulnerable to account takeover attack.

In early December 2022, we started receiving a small number of customer complaints about their websites being intermittently redirected. Upon receiving these complaints, we investigated and found that the intermittent redirects were happening on seemingly…

The Trellix Advanced Research Center vulnerability team has discovered a large new class of bugs that allow bypassing code signing to execute arbitrary code in the context of several platform applications, leading to escalation of privileges and sandbox escape…

MyQRcode, a popular Sofia, Bulgaria-based QR code generator website, is leaking the personal data of its users. Read more for details!