Socket researchers said the malware-ridden packages were collectively downloaded over 330 times. GitHub removed all of the malicious packages Wednesday.

The Chinese state-backed espionage group started targeting third-party IT services in late 2024, Microsoft researchers said.

Ransomware groups last year achieved lateral movement within an average of 48 minutes after gaining initial access to targeted environments, threat intelligence experts said.

Federal prosecutors accuse Cameron Wagenius of searching how to defect to Russia before he tried to sell stolen data to a foreign intelligence service.

CrowdStrike observed significant growth in China’s offensive cyber capabilities last year as more groups used sector-specific skills to target critical industries and technologies.

Palo Alto Networks’ threat intelligence firm said nearly 9 in 10 cyberattacks it responded to last year involved disrupted business operations.

The ransomware syndicate’s internal chats exposed a wide swath of the group’s inner workings.

The Chinese nation-state threat group primarily gained access to Cisco devices with legitimate login credentials, according to Cisco Talos.

Google researchers say multiple Russian state threat groups have conducted remote phishing operations to target and compromise Signal accounts.

The most consequential cyberattacks observed by Darktrace last year were linked to software defects in firewalls and perimeter network technologies.