Cybersecurity News
-
From Disclosure to Exploitation in Hours: LMDeploy SSRF Vulnerability Exploited in the Wild
In the rapidly evolving landscape of AI infrastructure, the window between vulnerability disclosure and active exploitation is shrinking to a matter of hours. A recent case study involving LMDeploy—an open-source…
Read More » -
The Evolution of Deception: Unmasking North Korean ‘Laptop Farms’ and Remote Work Infiltration
North Korean threat actors are refining a high-stakes social engineering playbook, leveraging the global shift toward remote work to bypass international sanctions and infiltrate high-value organizations. By deploying sophisticated “fake…
Read More » -
The Industrialization of Web3 Theft: How HexagonalRodent Leverages AI and Social Engineering to Loot Developers
In a sophisticated evolution of North Korean cyber operations, a threat actor group known as HexagonalRodent is systematically targeting the Web3 ecosystem. By blending high-touch social engineering with AI-augmented malware…
Read More » -
Tropic Trooper Campaign: Leveraging GitHub and VS Code Tunnels for Stealthy C2
A sophisticated new campaign attributed to the threat actor Tropic Trooper (also known as Earth Centaur or Pirate Panda) has emerged, showcasing a high degree of operational maturity. This campaign…
Read More » -
The Multi-Stage Supply Chain Compromise of Checkmarx KICS
In a sophisticated demonstration of supply chain exploitation, the official Checkmarx KICS (Keeping Infrastructure as Code Secure) ecosystem has fallen victim to a coordinated attack. Uncovered on April 22, 2026,…
Read More » -
Critical Supply Chain Compromise: Malicious Infostealer Detected in Xinference Python Package
The software development community is facing a significant security milestone as a sophisticated supply chain attack has successfully targeted Xinference, a widely-used Python package. With over 600,000 cumulative downloads, the…
Read More » -
Precision Targeting: Deconstructing the notnullOSX macOS Stealer Campaign
A sophisticated new cyber-threat has emerged in the macOS ecosystem, targeting high-net-worth individuals through a highly curated social engineering campaign. The malware, dubbed notnullOSX, is a Go-based, modular stealer designed…
Read More » -
Needle Stealer Malware Hijacking Traders via Fake “TradingClaw” AI Agent
Cybersecurity researchers have identified a sophisticated social engineering campaign leveraging a fraudulent “TradingView AI agent” to distribute the Needle Stealer malware. The attackers are utilizing a bogus persona known as…
Read More » -
Security Patch: iOS and iPadOS 26.4.2 Fixes Notification Data Leakage Vulnerability
Apple has officially deployed iOS 26.4.2 and iPadOS 26.4.2, a targeted security release designed to mitigate a critical privacy vulnerability. While often overlooked, these mid-cycle patches are vital for maintaining…
Read More » -
Mozilla Leveraged Claude Mythos to Patch 271 Zero-Day Vulnerabilities
In a landmark release for web browser security, Mozilla has deployed Firefox 150, a version defined by an unprecedented security overhaul. This update addresses a staggering 271 zero-day vulnerabilities—a figure…
Read More » -
Inside the ProxySmart Ecosystem: How a Belarusian Platform is Powering a Global SIM Farm-as-a-Service Network
Infrastructure intelligence firm Infrawatch has recently uncovered a sprawling, globally distributed SIM Farm-as-a-Service ecosystem, all orchestrated through a single software platform known as ProxySmart. The investigation mapped 87 exposed control…
Read More » -
Google Ads Weaponized for Crypto Theft
The traditional security perimeter is shifting. Malicious actors are increasingly bypassing technical firewalls by exploiting the one thing users trust most: the search engine results page (SERP). We are witnessing…
Read More » -
Mozilla MFSA-2026-30: Critical Memory Safety & Privilege Escalation Fixes for Firefox 150 & Thunderbird 150
Mozilla has released a comprehensive security advisory (MFSA-2026-30) addressing a significant cluster of vulnerabilities affecting various components of the Firefox ecosystem, including Firefox for Android, Thunderbird, and NSS libraries. This…
Read More » -
Exploiting the Frictionless Frontier: How Criminal Syndicates Weaponize French Freelancer Fintech Accounts
The rapid evolution of digital banking has provided unprecedented convenience for the modern entrepreneur, but it has also inadvertently engineered a high-velocity playground for organized crime. Cybercriminals are increasingly targeting…
Read More » -
Critical OS Command Injection Vulnerability (CVE-2026-21571) Identified in Atlassian Bamboo
Atlassian has issued a critical security advisory regarding a high-impact OS Command Injection vulnerability, tracked as CVE-2026-21571, affecting Atlassian Bamboo Data Center and Server. With a staggering CVSS score of…
Read More » -
CVE-2026-22752: Critical Metadata Injection Flaw in Spring Authorization Server’s Dynamic Client Registration
In the ecosystem of modern identity management, the Authorization Server serves as the “source of truth” for application security. A recently disclosed vulnerability, tracked as CVE-2026-22752, has sent ripples through…
Read More » -
The Trojan Candidate: How Jasper Sleet Infiltrates Cloud Environments via Remote Hiring Exploits
In a sophisticated evolution of social engineering, Microsoft has issued a critical warning regarding Jasper Sleet, a North Korea-aligned threat actor. Unlike traditional breaches that rely on phishing links or…
Read More » -
Security Advisory: Discovery of “Auraboros,” an Unauthenticated, High-Capability RAT Framework
In a significant finding for the threat intelligence community, a previously undocumented Remote Access Trojan (RAT) framework, dubbed Auraboros, has been discovered with a fully exposed command-and-control (C2) infrastructure. Unlike…
Read More »