Advertisement
CVE-2026-39987: Attackers Use LLM Agents for Post-Exploitation
Discover how threat actors are leveraging LLM agents to automate post-exploitation tasks after compromising Marimo notebooks via CVE-2026-39987.
Securing Identity Attack Paths: Protecting Cached AWS Credentials
Attackers exploit cached AWS access keys to achieve lateral movement. Learn how identity-based attack paths expose 98% of cloud entities and how to defend.
Azure Backup for AKS Vulnerability: Risks of Silent Patches
A reported Azure Backup for AKS vulnerability allowed potential cluster compromise. Learn why Microsoft rejected the report and the impact of silent fixes.
OpenClaw "Claw Chain" Flaws: Data Theft and Persistence Risks
Researchers at Cyera have identified the Claw Chain, a set of four OpenClaw vulnerabilities enabling data theft, privilege escalation, and persistent access.
PCPJack Malware: Stealing Cloud Secrets via Parquet File Discovery
PCPJack malware replaces TeamPCP, utilizing Apache Parquet files for stealthy cloud secret theft across multiple service providers and environments.
Securing Human, Machine, and AI Identities in Modern Environments
Explore the shift from human-centric IAM to managing machine and AI identities. Learn strategies for visibility and risk reduction in hybrid cloud.
APT41 Deploys Stealth Backdoor for Cloud Credential Harvesting
China-linked APT41 is targeting AWS, Azure, and Google Cloud with a new zero-detection backdoor designed to harvest credentials and maintain persistence.
Chaos Malware Variant Targets Cloud Infrastructure via SOCKS Proxy
A new variant of Chaos malware targets misconfigured cloud deployments, leveraging SOCKS proxy capabilities to expand botnet infrastructure beyond edge devices.
TeamPCP Breach of European Commission Affects 30 EU Entities
CERT-EU attributes a major cloud security breach at the European Commission to threat group TeamPCP, impacting data across 30 European Union organizations.
CrowdStrike Falcon Data Security: Streamlining Modern DLP Workflows
Learn how CrowdStrike Falcon Data Security replaces legacy DLP with a unified agent to provide visibility and protection across hybrid enterprise environments.
TeamPCP Targets Kubernetes Clusters with Iran-Specific Wiper Malware
TeamPCP is targeting misconfigured Kubernetes clusters to deploy a data-wiping script that specifically triggers on Iranian system configurations and locales.
CanisterWorm Wiper Attacks Target Iran via Cloud Misconfigurations
Analysis of the CanisterWorm wiper targeting Iranian systems through cloud service vulnerabilities, shifting from financial extortion to destructive operations.