Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder's research team built a new secrets detection method and scanned 5 ...

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.

Over 260,000 users installed fake AI Chrome extensions that used iframe injection to steal browser and Gmail data, exposing ...

A set of 30 malicious Chrome extensions that have been installed by more than 300,000 users are masquerading as AI assistants to steal credentials, email content, and browsing information.

Abstract: With the widespread adoption of mobile devices, user authentication has become a critical component in ensuring personal information security. Mobile devices (such as smartphones) are ...

Your trusted extension/add-on with over 100k review might be spying on you.

Here's how the JavaScript Registry evolves makes building, sharing, and using JavaScript packages simpler and more secure ...

Discover the best customer identity and access management solutions in 2026. Compare top CIAM platforms for authentication, MFA, and security features.

Organizations clinging to a Microsoft suite of authentication protocols long supplanted by a faster and more secure alternative are under renewed pressure to give up the NTLM ghost. See Also: ...

The NFL is using a facial authentication system developed by Wicket LLC, a Cambridge-based company, at Super Bowl LX.

Moltbook leaked email addresses and private messages.

Security issues continue to pervade the OpenClaw ecosystem, formerly known as ClawdBot then Moltbot, as multiple projects patch bot takeover and remote code execution (RCE) exploits.