targeted
-
Operation PhantomCLR: Exploiting .NET AppDomain Mechanisms via Trusted Intel Binaries
In a sophisticated display of living-off-the-land (LotL) tactics, threat actors are hijacking the fundamental architecture of the .NET AppDomain to…
Read More » -
Notion Data Leak Exposes Editor Email Addresses Without Authentication
Security researchers have confirmed that any public Notion page now leaks the full names, email addresses, and profile pictures of…
Read More » -
NIST Restructures NVD Operations to Tackle Record CVE Growth
According to a recent announcement from the National Institute of Standards and Technology (NIST), the agency is fundamentally restructuring how…
Read More » -
From Dundee to Federal Custody: UK Man Stole $8M via SMiShing and SIM Swaps
When we talk about cyber intrusions, we often think of complex code or zero-day exploits. However, as the recent case…
Read More » -
Email-Borne Worm Surge Targets Industrial Systems as Overall Malware Declines
While malware activity on industrial control systems (ICS) networks shows gradual decline, email-borne worms are driving a new wave of…
Read More » -
Global Law Enforcement Shuts Down DDoS-for-Hire Network, Warns 75,000 Users
A coordinated international law enforcement operation has dismantled a major DDoS-for-hire ecosystem, sending warnings to over 75,000 suspected users and…
Read More » -
Critical FortiSandbox Vulnerability CVE-2026-39808: Public Exploit Now Available
A proof-of-concept (PoC) exploit has been publicly released for a critical security flaw in Fortinet’s FortiSandbox, putting thousands of networks…
Read More » -
Sapphire Sleet’s Fake Zoom SDK Preys on macOS Users Through Social Engineering
A sophisticated cyber campaign orchestrated by North Korean threat actor Sapphire Sleet reveals a significant shift toward social engineering over…
Read More » -
Exploitation of CVE-2026-39987 in Marimo: A Multi-Stage Attack Campaign Targeting AI/ML Developer Infrastructure
Threat actors are actively exploiting CVE-2026-39987, a critical pre-authentication remote code execution (RCE) vulnerability in the marimo Python notebook platform,…
Read More » -
ZionSiphon Malware Analysis: A Developer Build Targeting Israeli Water Infrastructure
Hackers are currently experimenting with a new form of malware, designated as “ZionSiphon”, which is specifically engineered to compromise Israeli…
Read More » -
Ukrainian Authorities Warn of Surge in Targeted Cyberattacks on Government and Healthcare by UAC-0247
A significant surge in cyberattacks has been detected targeting Ukrainian local governments and municipal healthcare institutions, particularly clinical and ambulance…
Read More » -
Threat Group Disrupts Middle East Critical Sectors in Cyber Reconnaissance Operation
Cybersecurity researchers have identified a persistent threat group operating with high fidelity to the tradecraft of MuddyWater. This actor recently…
Read More » -
CISA Warns of Two Actively Exploited Microsoft Vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) has added two newly confirmed, actively exploited security flaws in Microsoft products to…
Read More » -
Rockstar Games Data Breach: ShinyHunters Leaks 78.6 Million Records
Rockstar Games has suffered a significant data breach after the infamous threat group ShinyHunters leaked over 78.6 million internal records…
Read More »