Overview Earlier this month, security sleuth and researcher “Chaotic Eclipse” (also known as Nightmare-Eclipse) published a zero-day exploit known as YellowKey, which allowed them to access BitLoc...
Overview of the First VPN Service 🚀 The Federal Bureau of Investigation (FBI) has released a FLASH report to share indicators of compromise (IOCs) and tactics related to the First VPN Service. Thi...
🚨 Important Security Alert! An attachment in an email impersonating DHL about a shipment contains a link to a preconfigured SimpleHelp remote access tool—an ideal starting point for attackers to e...
SALTO ProAccess Space Vulnerability Alert
SALTO ProAccess Space Vulnerability Alert 🚨 Date Published: July 16, 2026 A recent vulnerability has been identified in the SALTO ProAccess Space system. Successful exploitation of this vulnerabi...
Begun, the Patch Wars Have
🚀 Begun, the Patch Wars Have This July’s Patch Tuesday is an absolute whopper! There are 622 vulnerabilities being patched, with 62 classified as critical severity. To put this into context, this ...
Tracking Donot APT C 35 Bangladesh Military Intrusion
Tracking Donot APT C 35 Bangladesh Military Intrusion A targeted cyber-espionage operation against Bangladesh’s military and defense establishment has been identified. The initial access was achie...
ThreatsDay Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories
ThreatsDay: Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories 🚨 New Spirals ransomware recently encrypted a victim network in South Asia within 24 hours of the initial...
Suspected Chinese Operators Use Claude Code and DeepSeek to Breach Government Systems Across Four Countries
Overview In June 2026, a pivot from known TencShell C2 infrastructure led us to an open directory exposing an active intrusion campaign. TencShell is a Go-based implant derived from the open-sourc...
OkoBot New Sophisticated Malware Framework Targets Cryptocurrency Users
OkoBot: New Sophisticated Malware Framework Targets Cryptocurrency Users 🚨 In January 2026, multiple attacks involving unknown malware targeting cryptocurrency wallet windows were identified. This...
CVE-2026-63175 - Cross-Capture Session Data Leakage in Looklyloo
CVE-2026-63175 - Cross-Capture Session Data Leakage A new vulnerability, CVE-2026-63175, titled “Cross-Capture Session Data Leakage Due to Shared Mutable State in Looklyloo - PlaywrightCapture,” h...
CVE-2026-62314 - Anubis Policy Bypass via Client Controlled X-Original-URI Header
CVE-2026-62314 - Anubis: Policy Bypass via Client Controlled X-Original-URI Header A new vulnerability, CVE-2026-62314, has been identified, impacting Anubis, a Web AI Firewall Utility that challe...
The Serpent's Tongue Luring the Python Out of Its Den
The Serpent’s Tongue: Luring the Python Out of Its Den Python’s popularity, readable syntax, and extensive third-party library ecosystem make it an attractive target for threat actors seeking to c...
Six Minutes to Compromise How 'Patriot Bait' Actor Used AI to Build and Deploy a C&C Botnet
Six Minutes to Compromise: How ‘Patriot Bait’ Actor Used AI to Build and Deploy a C&C Botnet 🚀 TrendAI™ Research has conducted an in-depth analysis of over 200 Gemini CLI session logs, reveali...
No Single Pane of Glass Anatomy of an Azure Permission Takeover
No Single Pane of Glass: Anatomy of an Azure Permission Takeover The Sysdig Threat Research Team (TRT) recently observed an alarming incident where an attacker exploited a single leaked service-pr...
Burnt by Burgers Highlighting Void Blizzard's Russian State Links
Burnt by Burgers: Highlighting Void Blizzard’s Russian State Links On 30 October 2025, Russian citizen Denis Obrezko landed in Phuket, Thailand. Less than a week later, Thai authorities arrested h...
Hacking the Hackers Can You Still Deceive an AI Attacker?
Hacking the Hackers: Can You Still Deceive an AI Attacker? 🚀 Cyber deception was designed to fool human attackers. Techniques like honeypots, honeytokens, and decoys rely on assumptions about how ...
DomainTools Investigations Threat Intelligence Report - The Pro-Iran Hacktivist Ecosystem 2026
DomainTools Investigations Threat Intelligence Report - The Pro-Iran Hacktivist Ecosystem 2026 The cyber environment surrounding the U.S.-Iranian conflict and regional tensions has produced a dece...
Open Directory Exposes Three Evilginx Phishing Operators
Open Directory Exposes Three Evilginx Phishing Operators A single misconfigured server has exposed the complete toolkit of an active three-actor phishing ecosystem. According to new research from ...
OAuth Client ID Spoofing Why Fake Client IDs Are Gaining Traction for Stealthy Enumeration
OAuth Client ID Spoofing: Why Fake Client IDs Are Gaining Traction for Stealthy Enumeration 🚀 Introduction Proofpoint has observed OAuth client ID spoofing emerging as a novel technique, increasin...
New MemGhost Attack Plants Persistent False Memories in AI Agents Through One Email
New MemGhost Attack: A Game Changer in AI Security 🚀 Give an AI assistant a memory and access to your inbox, and you hand an attacker a way to rewrite what it thinks it knows about you. A single e...