|
Copycat hits another npm package
|
2026-05-19 |
3 |
|
Spring harvest - Leek Likho group's campaign to hunt for documents
|
2026-05-18 |
120 |
|
FlowerStorm unleashes the KrakVM: PhaaS operators turn to VM-based obfuscation
|
2026-05-18 |
87 |
|
Vidar v1.5 in Go: same family, new language, heavy sandbox checks
|
2026-05-18 |
7 |
|
Cato CTRL Threat Research: Suspected China-Linked Threat Actor Targets Global Manufacturer with Undocumented TencShell Malware
|
2026-05-18 |
73 |
|
Chinese APT Campaign Targets Entities with Updated FDMTP Backdoor
|
2026-05-18 |
12 |
|
macOS Stealer Spoofs Apple, Google, and Microsoft in a Single Attack Chain
|
2026-05-18 |
9 |
|
Tracking Mirai Variant Nexcorium: A Vulnerability-Driven IoT Botnet Campaign
|
2026-05-17 |
0 |
|
Untangling a Linux Incident With an OpenAI Twist
|
2026-05-17 |
0 |
|
Dissecting macOS intrusion from lure to compromise
|
2026-05-17 |
16 |
|
CVE-2026-39987 update: How attackers weaponized marimo to deploy a blockchain botnet via HuggingFace
|
2026-05-16 |
0 |
|
Ongoing exploitation of Cisco Catalyst SD-WAN vulnerabilities
|
2026-05-15 |
1 |
|
Kazuar: Anatomy of a nation-state botnet
|
2026-05-15 |
9 |
|
Gremlin Stealer's Evolved Tactics: Hiding in Plain Sight With Resource Files
|
2026-05-15 |
12 |
|
A new Mac stealer targeting $10K+ crypto wallets
|
2026-05-15 |
13 |
|
Chasing an Angry Spark
|
2026-05-15 |
15 |
|
Device Code Phishing is an Evolution in Identity Takeover
|
2026-05-14 |
35 |
|
Disclosing new PebbleDash-based tools
|
2026-05-14 |
50 |
|
108 Chrome Extensions Linked to Data Exfiltration and Session Theft via Shared C2 Infrastructure
|
2026-05-14 |
39 |
|
59 Victims, Zero Authentication: A ClickFix Campaign Force-Installs a Chrome Extension Banking Stealer and Leaves the Entire C2 Wide Open
|
2026-05-14 |
18 |
|
Python Backdoor Threat Analysis Following an AI Deepfake Impersonation Campaign
|
2026-05-14 |
2 |
|
ASO RAT: Arabic-Language Android Surveillance Platform Targeting Syria
|
2026-05-13 |
0 |
|
REFUNDEE: Inside a Shadow Panel Phishing-as-a-Service Operation
|
2026-05-13 |
35 |
|
Live C2 Dump Recovering Every Stage of the Kill Chain: CHM Dropper, VBScript Stager, PowerShell Keylogger
|
2026-05-13 |
39 |
|
Adobe Reader 0-day
|
2026-05-13 |
7 |
|
Threat Actors Leverage Claude Code Leak as Social Engineering Lure to Distribute Malicious Payloads via GitHub
|
2026-05-13 |
18 |
|
Threat Actor Targets Arabian Gulf Region With PlugX
|
2026-05-13 |
30 |
|
LBIOC-20260071 - The Gentlemens Leak
|
2026-05-13 |
70 |
|
Tracking MiniDionis: CozyCar's New Ride Is Related to Seaduke
|
2026-05-13 |
0 |
|
TanStack npm Packages Compromised in Ongoing Supply-Chain Attack
|
2026-05-12 |
9 |
|
Iran-Linked Hackers Breached Korean Electronics Maker in Global Spying Campaign
|
2026-05-12 |
17 |
|
Vibe Hacking: Two AI-Augmented Campaigns Target Government and Financial Sectors in Latin America
|
2026-05-12 |
25 |
|
Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomware
|
2026-05-11 |
0 |
|
Mysterious hacker organization operating secretly for 6 years is exploiting critical cPanel vulnerability to deploy backdoor trojans
|
2026-05-11 |
0 |
|
OPERATION SILENTCANVAS: JPEG BASED MULTISTAGE POWERSHELL INTRUSION
|
2026-05-11 |
20 |
|
Technical Advisory: Breach of Instructure Canvas LMS
|
2026-05-11 |
2 |
|
Abuse of Cloud-Native Infrastructure in Modern Phishing Campaigns
|
2026-05-11 |
1 |
|
AI-Assisted Lure Factory Targets Developers & Gamers
|
2026-05-11 |
9 |
|
New Lua-based malware LucidRook observed in targeted attacks against Taiwanese organizations
|
2026-05-08 |
20 |
|
Threat Actors Weaponize Tiflux RMMs in Malspam Attacks
|
2026-05-08 |
0 |
|
APT28 exploit routers to enable DNS hijacking operations
|
2026-05-07 |
0 |
|
Detections for the Axios supply chain compromise
|
2026-05-07 |
23 |
|
Unit42: Understanding Current Threats to Kubernetes Environments
|
2026-05-07 |
0 |
|
Seqrite: Advisory: Middle East Conflict & Cyber Escalation
|
2026-05-06 |
0 |
|
Iranian-Nexus Operation Against Oman's Government: 12 Ministries Hit and 26,000 Citizen Records Exposed
|
2026-05-06 |
29 |
|
Malicious OpenClaw Skill Distributes Remcos RAT and GhostLoader
|
2026-05-06 |
13 |
|
Storm-1175 focuses gaze on vulnerable web-facing assets in high ...
|
2026-05-06 |
0 |
|
CloudZ RAT potentially steals OTP messages using Pheno plugin
|
2026-05-05 |
8 |
|
Popular DAEMON Tools software compromised
|
2026-05-05 |
21 |
|
Four published versions of a fake "tanstack" package uploaded in 27 minutes that want to steal your .env files
|
2026-05-05 |
5 |
Trusted Design