Author: Mash

Threat actors have been brute-forcing VPN credentials and bypassing multi-factor authentication on SonicWall Gen6 SSL-VPN appliances by exploiting CVE-2024-12802, with [...]

A threat actor using the account deadcode09284814 has published four malicious npm packages containing the leaked Shai-Hulud malware, which steals [...]

A researcher known as Chaotic Eclipse has released a proof-of-concept exploit for a Windows privilege escalation zero-day called MiniPlasma, which [...]

A security researcher using the handle Chaotic Eclipse has published proof-of-concept exploits for two unpatched Windows vulnerabilities named YellowKey and [...]

Microsoft has released the KB5087544 extended security update for Windows 10 Enterprise LTSC users and those enrolled in the Extended [...]

Checkmarx warned that a rogue version of its Jenkins Application Security Testing plugin was published on the Jenkins Marketplace, marking [...]

A malicious Hugging Face repository impersonating OpenAI's legitimate Privacy Filter project reached the platform's trending list and accumulated 244,000 downloads [...]

A new malware framework named PCPJack targets exposed cloud infrastructure including Docker, Kubernetes, Redis, MongoDB, and RayML for large-scale credential [...]

A phishing campaign using sponsored Google search results targets login credentials for GoDaddy's ManageWP platform, which allows centralized management of [...]

A large-scale fraud operation named FEMITBOT is abusing Telegram's Mini App feature to run cryptocurrency scams, impersonate well-known brands, and [...]

A new attack technique called ConsentFix v3 has emerged on hacker forums, automating OAuth abuse against Microsoft Azure environments through [...]

Microsoft has updated its Windows 11 in-box app removal policy to include a dynamic list enabling IT administrators to uninstall [...]

The KB5083769 security update for Windows 11 versions 24H2 and 25H2 is causing failures in third-party backup applications from vendors [...]

A critical vulnerability affecting all but the latest versions of cPanel and WebHost Manager allows unauthenticated attackers to gain access [...]

Researchers have discovered a critical flaw in VECT 2.0 ransomware that causes the malware to act as a data wiper [...]

Attackers exploited a flaw in Robinhood's account creation process to inject phishing messages into legitimate account confirmation emails, tricking customers [...]

A threat group tracked as UNC6692 uses email bombing followed by Microsoft Teams calls impersonating IT helpdesk agents to deploy [...]

A high-severity vulnerability named Pack2TheRoot, tracked as CVE-2026-41651 with an 8.8 rating, has existed for nearly twelve years in the [...]

Attackers uploaded a malicious version 2026.4.0 of the official Bitwarden CLI package to npm on April 22, operating for approximately [...]

A new ransomware operation called Kyber is targeting both Windows and VMware ESXi environments, with the Windows variant implementing Kyber1024 [...]

Twenty-six malicious applications infiltrated Apple's App Store in China, impersonating legitimate wallets including Metamask, Coinbase, and Trust Wallet to steal [...]

Microsoft is rolling out significant reliability improvements to Windows 11 through upcoming April optional and May mandatory updates, with many [...]

A critical remote code execution vulnerability in the widely used protobuf.js library enables attackers to execute arbitrary JavaScript by supplying [...]

The Payouts King ransomware operation is leveraging the QEMU emulator to run hidden virtual machines on compromised systems, creating reverse [...]

Attackers are exploiting a critical Marimo remote code execution vulnerability tracked as CVE-2026-39987 to deliver a new variant of NKAbuse [...]

The Kraken cryptocurrency exchange disclosed that a cybercriminal group is attempting to extort the company by threatening to release videos [...]

OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious Axios package version 1.14.1 [...]

Attackers began exploiting a critical unauthenticated remote code execution flaw in the Marimo Python notebook platform just ten hours after [...]

Attackers compromised the official CPUID website for approximately 19 hours between April 9 and April 10, replacing download links for [...]

A sophisticated Lua-based malware called LucidRook has been deployed in spear-phishing campaigns against non-governmental organizations and universities in Taiwan, according [...]

A remote code execution vulnerability in Apache ActiveMQ Classic that remained undetected for 13 years has been discovered using the [...]

A severe vulnerability tracked as CVE-2026-0740 in the Ninja Forms File Uploads premium add-on for WordPress is being actively exploited, [...]

Researchers at the University of Toronto have developed a new attack called GPUBreach that induces bit flips on GDDR6 memory [...]

Device code phishing attacks, which abuse the OAuth 2.0 Device Authorization Grant flow, have increased more than 37-fold this year [...]

A deceptive Chrome extension named ChatGPT Ad Blocker, available on the official Chrome Web Store, has been caught harvesting users' [...]

A malicious Android strain called NoVoice has infected approximately 2.3 million devices through over 50 apps on the Google Play [...]

Security researchers have uncovered a new malicious implant called RoadK1ll that allows threat actors to pivot from compromised machines to [...]

Apple has begun sending lock screen notifications to iPhones and iPads running older operating system versions, alerting users to active [...]

The TeamPCP hacking group compromised the official Telnyx PyPI package today, publishing malicious versions 4.87.1 and 4.87.2 that deliver credential-stealing [...]

Microsoft has announced a significant change to Windows kernel policy that will phase out default trust for drivers signed under [...]