Vibe Hacking Has Arrived 🚀 The same dynamic has played out in offensive cyber, and a recent breach in Mexico is the clearest proof yet. According to researchers at Gambit Security, an unknown acto...

Speagle Malware Alert 🚨 Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality and infrastructure of a legitimate program called Cobra DocGuard. Speagle...

Critical Ubiquiti UniFi Security Flaw 🚨 Ubiquiti has addressed two vulnerabilities in its UniFi Network app, including a critical flaw that could allow attackers to take over user accounts. This s...

New ‘PolyShell’ Flaw Allows Unauthenticated RCE on Magento E-Stores 🚨 A newly disclosed vulnerability dubbed ‘PolyShell’ affects all Magento Open Source and Adobe Commerce stable version 2 install...

NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2025-12518 Bee Content Design - B...

NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2025-12518 Bee Content Design - B...

The Beast Returns: Analysis of a Beast Ransomware Server According to open source reports, Beast is a Ransomware-as-a-Service (RaaS) that was first promoted on the underground forum RAMP in June 2...

Scans for Adminer: Understanding the Threat A very popular target of attackers scanning our honeypots is phpMyAdmin. phpMyAdmin is a script first released in the late 90s, before many security con...

🚨 Crypto Scam ‘ShieldGuard’ Dismantled After Malware Discovery A cryptocurrency scam known as ‘ShieldGuard’ has been dismantled after researchers identified it as a malicious browser extension des...

Transparent COM Instrumentation for Malware Analysis Published on: March 18, 2026 Source: Talos Blog COM automation is a core Windows technology that allows code to access external functionality ...

Researchers Found Font-Rendering Trick to Hide Malicious Commands 🚨 Researchers have published a proof-of-concept (PoC) that uses custom fonts to fool many popular Artificial Intelligence (AI) ass...

New Ubuntu Flaw Enables Local Attackers to Gain Root Access 🚨 A newly identified local privilege escalation (LPE) vulnerability has been discovered affecting default installations of Ubuntu Deskto...

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access Amazon Threat Intelligence is warning of an active Interlock ransomware campaign that’s exploiting a recently disclo...

Warlock Ransomware Group Enhances Post-Exploitation Techniques 🚀 The Warlock ransomware group continues to exploit unpatched Microsoft SharePoint servers with a new focus on stealthier, more resil...

Schneider Electric SCADAPack and RemoteConnect Vulnerability Advisory 🚨 Source: CISA Date Published: March 17, 2026 Schneider Electric is aware of a vulnerability in its SCADAPack x70 RTU product...

Katana: A Mirai Variant Targeting Android TV Set-Top Boxes 🚨 Content Warning: This report quotes malware artifacts verbatim, including domain names, C2 strings, and build paths chosen by the threa...

How to Examine Polyglot Files with Spectra Analyze Polyglot files combine elements from multiple file formats, concealing executable code in overlooked sections such as metadata or comments within...

GitHub - Katana: A Next-Generation Crawling and Spidering Framework 🚀 Katana is a next-generation crawling and spidering framework designed for fast and fully configurable web crawling, supporting...

CODESYS Vulnerabilities in Festo Automation Suite 🚨 Attention all users! The following versions of CODESYS in Festo Automation Suite are affected: FESTO Software Festo Automation Suite (versio...

90% of People Don’t Trust AI with Their Data People are using AI, but they don’t trust it. In our latest privacy pulse survey, we gathered 1,200 responses from readers of the Malwarebytes newslett...