streams
-
Operation GriefLure: Precision Social Engineering Meets Modular Malware
Cybersecurity researchers have identified a highly sophisticated spear-phishing campaign, designated as Operation GriefLure, which targets high-ranking executives in Vietnam and…
Read More » -
Macsync, Shub Stealer, and AMOS: How Social Engineering Powers macOS Infostealers
A sophisticated wave of “ClickFix” style social engineering attacks is currently sweeping through the macOS ecosystem. Unlike traditional malware campaigns…
Read More » -
Critical Patch Alert: Mitigating Remote Code Execution Risks in Apache HTTP Server via CVE-2026-23918
The Apache Software Foundation has issued an urgent security advisory regarding a critical vulnerability discovered within the Apache HTTP Server.…
Read More » -
Critical Patch Alert: Addressing Remote Code Execution (RCE) Vulnerabilities in Apache MINA
The Apache MINA project has released an urgent security advisory targeting two high-severity vulnerabilities that pose a significant risk to…
Read More » -
Wireshark 4.6.5 Patches Critical Code Execution and DoS Vulnerabilities
For network engineers and security researchers, Wireshark is the industry-standard “microscope” used to examine the granular details of network traffic.…
Read More » -
Deep Dive: Deconstructing SLOTAGENT, a Sophisticated New Remote Access Trojan
In early 2026, security researchers at IIJ uncovered a highly evasive Remote Access Trojan (RAT) dubbed SLOTAGENT. Originally identified within…
Read More » -
Critical Authentication Bypass Vulnerability (CVE-2025-65856) in Hangzhou Xiongmai XM530 IP Cameras
A high-severity security flaw has been uncovered in the Hangzhou Xiongmai Technology XM530 series IP cameras, posing an imminent threat…
Read More » -
Trigona Affiliates Pivot to Proprietary Data Exfiltration Tooling
In a significant tactical shift, ransomware operators are moving away from “living off the land” with common utilities and toward…
Read More » -
China’s Tianjin Supercomputer Center Allegedly Hit in 10-Petabyte Data Theft
A threat actor has allegedly executed one of the largest data heists in China’s history, siphoning an astounding 10 petabytes…
Read More » -
TP-Link Router Flaws Allowed Attackers to Launch DoS Attacks and Cause Crashes
TP-Link has recently addressed a batch of severe vulnerabilities affecting the Tapo C520WS security camera system. Security cameras are critical…
Read More » -
CrystalX Malware-as-a-Service Spreads via Telegram With Stealer, RAT Tools
Hackers are actively promoting a new malware-as-a-service (MaaS) platform called CrystalX RAT through private Telegram channels, offering cybercriminals a powerful…
Read More » -
RoadK1ll Malware Turns Hacked Devices Into Network Relays
Hackers are deploying a new Node.js-based implant dubbed RoadK1ll to quietly turn compromised hosts into on-demand network relays, enabling stealthy…
Read More » -
CISA Warns Cisco Secure Firewall Management Center 0-Day Is Being Exploited in Ransomware Attacks
The Cybersecurity and Infrastructure SecurityAgency (CISA) has issued an urgent warning concerning a critical zero-day vulnerability actively exploited in targeted…
Read More » -
Hackers Weaponize 7-Zip Downloads to Turn Home PCs Into Proxy Nodes
A fake website impersonating the popular 7-Zip file archiver has been distributing malicious software that secretly converts infected computers into…
Read More » -
Advanced Features Bypass AI Detection and Steal Password Manager Data
The Python-based information-stealing tool Xillen Stealer has reached versions 4 and 5, significantly expanding its targeting capabilities and functionality across…
Read More »