Advertisement
macOS Terminal ClickFix Protections: Blocking Malicious Shell Commands
Apple introduces Terminal warnings in macOS Sequoia 15.2 to combat ClickFix social engineering attacks that trick users into executing malicious shell scripts.
trivy-action Supply Chain Attack: Scattered Swarm Steals GitHub Secrets
Analysis of the trivy-action supply chain compromise by Scattered Swarm. Learn how GitHub runner secrets were stolen and critical mitigation steps.
SnappyClient C2 Implant Targets Crypto Wallets for Data Theft
A new C2 implant, SnappyClient, is actively targeting crypto wallets, facilitating remote access, extensive data theft, and persistent spying on victims.
GlassWorm Abuses Open VSX Registry in Supply-Chain Attack
The GlassWorm campaign exploits transitive dependencies in 72 Open VSX extensions to deliver malicious loaders into developer environments.
FBI Seeks Victims of Malicious Steam Games Stealing Credentials
The FBI is investigating eight malicious games on Steam that stole user credentials from tens of thousands of players. Learn how to identify and report compromised
N8n Flaw Exploitation, Slopoly Malware, AppArmor LPE: Key Threats
Analysis of recent cybersecurity threats: actively exploited N8n flaw, Slopoly malware, Linux AppArmor root privilege vulnerability, and Telus Digital breach.
Storm-2561 Leverages SEO Poisoning for Credential Theft
Microsoft warns of Storm-2561's credential theft campaign using SEO poisoning to distribute fake, digitally signed VPN clients disguised as legitimate enterprise
BeatBanker Android Malware: Starlink Impersonation & Device Hijack
New BeatBanker Android malware impersonates the Starlink app on fake app stores to hijack devices, targeting unsuspecting users. Learn detection & mitigation.
Sednit/APT28 Resurfaces: Advanced Toolkit Threat Analysis
Russian-affiliated APT Sednit (APT28) has returned with sophisticated new malware, shifting from simple implants. Understand their updated TTPs and mitigation strategies.
Fake Next.js Job Interview Tests Backdoor Developers
Microsoft Defender discovered a campaign where malicious Next.js job interview tests backdoor developers' devices, posing a supply chain risk.
Next.js Supply Chain Attacks: North Korean Actors Target Developers
North Korean state-sponsored actors leverage malicious Next.js repositories and fake job interviews to compromise developers' systems for persistent access and espionage.