Overview Earlier this month, security sleuth and researcher “Chaotic Eclipse” (also known as Nightmare-Eclipse) published a zero-day exploit known as YellowKey, which allowed them to access BitLoc...
Overview of the First VPN Service 🚀 The Federal Bureau of Investigation (FBI) has released a FLASH report to share indicators of compromise (IOCs) and tactics related to the First VPN Service. Thi...
🚨 Important Security Alert! An attachment in an email impersonating DHL about a shipment contains a link to a preconfigured SimpleHelp remote access tool—an ideal starting point for attackers to e...
Suspected Chinese Operators Use Claude Code and DeepSeek to Breach Government Systems Across Four Countries
Overview In June 2026, a pivot from known TencShell C2 infrastructure led us to an open directory exposing an active intrusion campaign. TencShell is a Go-based implant derived from the open-sourc...
OkoBot New Sophisticated Malware Framework Targets Cryptocurrency Users
OkoBot: New Sophisticated Malware Framework Targets Cryptocurrency Users 🚨 In January 2026, multiple attacks involving unknown malware targeting cryptocurrency wallet windows were identified. This...
CVE-2026-63175 - Cross-Capture Session Data Leakage in Looklyloo
CVE-2026-63175 - Cross-Capture Session Data Leakage A new vulnerability, CVE-2026-63175, titled “Cross-Capture Session Data Leakage Due to Shared Mutable State in Looklyloo - PlaywrightCapture,” h...
CVE-2026-62314 - Anubis Policy Bypass via Client Controlled X-Original-URI Header
CVE-2026-62314 - Anubis: Policy Bypass via Client Controlled X-Original-URI Header A new vulnerability, CVE-2026-62314, has been identified, impacting Anubis, a Web AI Firewall Utility that challe...
The Serpent's Tongue Luring the Python Out of Its Den
The Serpent’s Tongue: Luring the Python Out of Its Den Python’s popularity, readable syntax, and extensive third-party library ecosystem make it an attractive target for threat actors seeking to c...
Six Minutes to Compromise How 'Patriot Bait' Actor Used AI to Build and Deploy a C&C Botnet
Six Minutes to Compromise: How ‘Patriot Bait’ Actor Used AI to Build and Deploy a C&C Botnet 🚀 TrendAI™ Research has conducted an in-depth analysis of over 200 Gemini CLI session logs, reveali...
No Single Pane of Glass Anatomy of an Azure Permission Takeover
No Single Pane of Glass: Anatomy of an Azure Permission Takeover The Sysdig Threat Research Team (TRT) recently observed an alarming incident where an attacker exploited a single leaked service-pr...
Burnt by Burgers Highlighting Void Blizzard's Russian State Links
Burnt by Burgers: Highlighting Void Blizzard’s Russian State Links On 30 October 2025, Russian citizen Denis Obrezko landed in Phuket, Thailand. Less than a week later, Thai authorities arrested h...
Hacking the Hackers Can You Still Deceive an AI Attacker?
Hacking the Hackers: Can You Still Deceive an AI Attacker? 🚀 Cyber deception was designed to fool human attackers. Techniques like honeypots, honeytokens, and decoys rely on assumptions about how ...
DomainTools Investigations Threat Intelligence Report - The Pro-Iran Hacktivist Ecosystem 2026
DomainTools Investigations Threat Intelligence Report - The Pro-Iran Hacktivist Ecosystem 2026 The cyber environment surrounding the U.S.-Iranian conflict and regional tensions has produced a dece...
Open Directory Exposes Three Evilginx Phishing Operators
Open Directory Exposes Three Evilginx Phishing Operators A single misconfigured server has exposed the complete toolkit of an active three-actor phishing ecosystem. According to new research from ...
OAuth Client ID Spoofing Why Fake Client IDs Are Gaining Traction for Stealthy Enumeration
OAuth Client ID Spoofing: Why Fake Client IDs Are Gaining Traction for Stealthy Enumeration 🚀 Introduction Proofpoint has observed OAuth client ID spoofing emerging as a novel technique, increasin...
New MemGhost Attack Plants Persistent False Memories in AI Agents Through One Email
New MemGhost Attack: A Game Changer in AI Security 🚀 Give an AI assistant a memory and access to your inbox, and you hand an attacker a way to rewrite what it thinks it knows about you. A single e...
UK and EU Strike Russian Cyber Networks with New Sanctions
UK and EU Strike Russian Cyber Networks with New Sanctions 🚀 New sanctions target the Russian state’s persistent and increasingly reckless attempts to sow chaos and division across Europe. The UK ...
Someone Is Scanning for Your MCP Servers and AI Assistant Credentials
🚨 Alert: Scanning for MCP Servers and AI Credentials Someone is systematically searching for Model Context Protocol (MCP) servers, AI assistant configuration files, and locally exposed LLM endpoin...
Csa Improve Router Hygiene
Csa Improve Router Hygiene The US Defense Department has published a critical advisory regarding the ongoing threats posed by the Russian Federal Security Service (FSB) Center 16 cyber actors. The...
CVE-2026-58408 - ChurchCRM Vulnerability Exposes PII
CVE-2026-58408 - ChurchCRM Vulnerability 🚨 ChurchCRM is an open-source church management system. Prior to version 7.4.0, a low-privileged user could bypass the /admin/export UI and exfiltrate the ...