Overview Earlier this month, security sleuth and researcher “Chaotic Eclipse” (also known as Nightmare-Eclipse) published a zero-day exploit known as YellowKey, which allowed them to access BitLoc...

Overview of the First VPN Service 🚀 The Federal Bureau of Investigation (FBI) has released a FLASH report to share indicators of compromise (IOCs) and tactics related to the First VPN Service. Thi...

🚨 Important Security Alert! An attachment in an email impersonating DHL about a shipment contains a link to a preconfigured SimpleHelp remote access tool—an ideal starting point for attackers to e...

WhatsApp’s New Privacy Update 🚀 WhatsApp introduces a new privacy update that lets users connect using unique handles, eliminating the need to share phone numbers with strangers or new group membe...

Overview of the Attack 🚨 In this blog entry, TrendAI Research examines a wave of phishing emails observed in May 2026 that targeted Japanese accommodation facilities using Booking.com. This report...

The Bear Necessities: A Look at the Drivers, Dynamics, and Applications of the Pro-Russia Influence Ecosystem Four years into Russia’s full-scale invasion of Ukraine, the pro-Russia influence ecos...

The Red Agent POV: Exploiting Broken Object-Level Authorization in an Airline GraphQL API This Red Agent POV focuses on Broken Object-Level Authorization (BOLA), diving deep into a critical author...

StegoAd Campaign Exposed 🚨 Microsoft has successfully shut down the StegoAd campaign, which operated through 119 malicious Edge extensions. This operation, which went undetected for two years, ama...

From Bing Search to Ransomware: Bumblebee and AdaptixC2 Deliver Akira In July 2025, BumbleBee malware was deployed via SEO poisoning through a trojanized installer for ManageEngine OpManager. Foll...

CVE-2026-10648 - Critical NULL-pointer Dereference Vulnerability in MCUmgr An attacker on the serial/console link can flood the transport to drive the 4-entry buffer pool to exhaustion and induce ...

Adding Automation to the Favicon.ico Method of Host Recon The “favicon.ico” file is the 16x16 pixel icon that appears in the tab view for any particular host. Many organizations mandate the same f...

KDDI Data Breach 🚨 KDDI Corporation has disclosed a significant data breach that has exposed up to 14.2 million email accounts across six Japanese internet service providers. The company detected ...

New Bucket Hijacking Attack 🚨 A critical cloud storage attack technique dubbed “bucket hijacking” enables threat actors to silently redirect an organization’s active cloud data streams, including ...

Cybersecurity Incident 🚨 A cybersecurity researcher, known as Eaton, has uncovered serious vulnerabilities in Johnson & Johnson’s (J&J) internal systems. This breach allowed access to sens...

Major macOS Vulnerability Discovered! 🚨 Cybersecurity defense firm XM Cyber has identified a significant security flaw in the Apple macOS operating system. This vulnerability lies within the core ...

The Latest Addition to Turla’s Intelligence Gathering Apparatus 🚀 Google Threat Intelligence Group (GTIG) has conducted an in-depth analysis of a .NET backdoor, tracked as STOCKSTAY, that has been...

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks 🚨 A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called Sh...

Overview of CL-STA-1062 Throughout 2025, we observed a cluster of activity targeting government entities and critical infrastructure in Southeast Asia. Specifically, the activity targeted state-ow...

AsyncRAT Family Threat Overview AsyncRAT is a family of open-source Windows remote access trojans (RATs) that has been forked into numerous descendant malware families. Its most prolific descendan...