Technology ❯ Cybersecurity

Threat Intelligence

Malware Analysis Malware Incident Response Vulnerabilities Attack Vectors Exploitation Indicators of Compromise Advanced Persistent Threats Vulnerability Management Threat Actors

FBI Warns Kali365 Phishing Service Steals Microsoft OAuth Tokens

The service lets low‑skill attackers capture device‑code tokens to maintain long‑term access to Outlook, Teams and OneDrive.

Mini Shai-Hulud Poisons Hundreds of AntV npm Packages in One-Hour Burst

Anthropic to Brief FSB on Mythos Cyber Risks, Eases Limits on Sharing Findings

Turla Rebuilds Kazuar Into Modular P2P Botnet for Stealthy Long-Term Access

OpenAI Orders Mac App Updates After TanStack Supply-Chain Breach Exposes Signing Certificates

Researcher Publishes YellowKey BitLocker Bypass and GreenPlasma Windows Exploit PoCs

CISA Orders Rapid Patching of Cisco SD‑WAN Admin‑Bypass Flaw CVE‑2026‑20182

Fragnesia Linux Kernel Flaw Gives Local Users Root Access

TeamPCP Worm Poisons Hundreds of npm and PyPI Packages With Signed Malicious Releases

TrickMo Android Trojan Moves C2 to TON to Turn Infected Phones Into Network Exits

Google Reports First AI‑Aided Zero‑Day Targeting 2FA Was Disrupted

Checkmarx Confirms Tainted Jenkins Plugin and Ships Clean Updates

PCPJack Malware Evicts TeamPCP From Cloud Systems and Harvests Credentials

DAEMON Tools Confirms Supply-Chain Breach, Releases Clean Lite 12.6

CloudZ Malware Hijacks Microsoft Phone Link to Steal SMS Codes and Credentials

Rapid7 Links Iran’s MuddyWater to False-Flag Chaos Ransomware Operation

Ripple Shares DPRK Hacker Intelligence Through Crypto ISAC After API Launch

cPanel Zero-Day Drives Ongoing Exploits as CISA Demands Fast Patching

Researchers Detail Deep#Door, a Stealthy Python Backdoor Hidden in a Windows Batch File

CrowdStrike Flags Cordial and Snarky Spider for Fast SaaS Extortion Campaigns