M stolen after six-month DPRK social engineering campaign began fall 2025, exposing Drift’s contributors and cloud assets.

The maintainers of the popular Axios HTTP client have published a detailed post-mortem describing how one of its developers ...

The North Korean threat actor behind the Axios supply chain attack has been targeting high-profile Node.js maintainers.

Drift lost $285M on April 1, 2026 after nonce-based social engineering enabled admin takeover, exposing DPRK-linked crypto ...

Drift Protocol's April 2026 exploit traces to a six-month DPRK-linked infiltration using fake identities, conferences, and ...

Lazarus Group may have helped build many top DeFi protocols through long-term infiltration and code contributions. The group ...

North Korea ran a 6 month undercover crypto operation inside Drift Protocol before draining $270 million in under a minute.

Security researcher Taylor Manonan said North Korean IT workers infiltrated more than 40 DeFi platforms over the past seven years. The claim surfaced hours afte ...

North Korean hackers pushed out malicious updates to a popular open source project by hacking a top developer's computer in a ...

NCSC advises on countermeasures for high-risk individuals over phishing attacks on encrypted messaging services, such as ...

Dumpster diving isn't a new phenomenon in hacking, but its digital equivalent is the modern attack method of choice for most hackers, according to a new study from Ontinue. In it, the researchers ...

With critical hacking warnings for Android and iPhone users making headlines, national security agencies suggest you try turning your smartphone off and back on.