tokens
-
Social Engineering Evolution: Analyzing the Rise of macOS ‘ClickFix’ Campaigns and ConsentFix OAuth Hijacking
The cybersecurity landscape is witnessing a sophisticated convergence of social engineering and technical exploitation. Two distinct yet equally alarming methodologies…
Read More » -
The Silent Threat: How One Malicious File Can Steal Your AWS Credentials
A critical security vulnerability has been identified within the Amazon Q Developer extension for Visual Studio Code (VS Code), exposing…
Read More » -
CVE-2026-28496: Critical SSTI Vulnerability in FOSSBilling Poses Imminent Risk of RCE and Database Compromise
A high-severity Server-Side Template Injection (SSTI) vulnerability has been identified in FOSSBilling, tracked as CVE-2026-28496. This flaw allows for potential…
Read More » -
The Evolution of k0to: From KuinaExtractor Prototype to Hardened Rust-Based Infostealer
Security researchers have identified a sophisticated lineage of Rust-based malware, originally operating under the moniker KuinaExtractor and recently rebranded…
Read More » -
Critical Vulnerability Alert: Predictable SSO Token Generation in ManageEngine AD360 Leads to Account Takeover
A critical security flaw has been identified within ManageEngine’s AD360 identity and access management (IAM) suite, designated as CVE-2026-11374. This…
Read More » -
Supply Chain Alert: Shai-Hulud/Hades Malware Targets Leo/RStreams Ecosystem
A sophisticated supply-chain attack has been identified targeting the Leo/RStreams ecosystem, an AWS-native event streaming SDK frequently utilized in Kinesis,…
Read More » -
Technical Analysis: Sophisticated AiTM Phishing Campaign Targeting AWS Console Users
A highly coordinated and technically proficient phishing campaign has been identified, specifically targeting AWS console users through an Adversary-in-the-Middle (AiTM)…
Read More » -
Automating the Core: How Claude Fable 5 Synthesized a Windows-Style Kernel in Minutes
The boundary between high-level software engineering and low-level systems programming is blurring. In a landmark demonstration of autonomous reasoning, the…
Read More » -
Supply Chain Vulnerability: OAuth Token Compromise at Klue Impacts LastPass Salesforce Data
A sophisticated supply chain incident involving the market intelligence platform Klue has resulted in unauthorized access to specific datasets within…
Read More » -
The Cordyceps Pattern: Unmasking Systemic Supply Chain Vulnerabilities in CI/CD Workflows
A critical security pattern, colloquially dubbed “Cordyceps,” has surfaced, revealing a profound architectural weakness in modern CI/CD pipelines. This is…
Read More » -
Deep Dive: The CodeStorm Adversary-in-the-Middle (AiTM) Campaign Targeting Microsoft 365
A sophisticated multi-organization phishing campaign, attributed to the CodeStorm threat actor, is currently targeting Microsoft 365 tenants. Unlike traditional credential…
Read More » -
£39 Million in Chaos: Inside the TfL Cybercrime Trial
In a landmark development for international cybersecurity law enforcement, two individuals linked to the notorious Scattered Spider cybercrime collective have…
Read More » -
The iOS LLM Security Gap: How 282 AI Apps are Leaking Critical API Credentials
As Large Language Models (LLMs) become deeply integrated into the mobile ecosystem, a new and systemic security vulnerability has emerged.…
Read More » -
Sapphire Sleet Compromises Node.js: Account Takeover, Typosquatting, and Multi-Stage Payloads in @mastra
A sophisticated supply chain attack has been identified targeting the Node.js ecosystem, attributed to the North Korean state-sponsored actor Sapphire…
Read More » -
Security Alert: Critical “MaXSS” and “Spyder” Vulnerabilities Compromise Millions of AI-Powered Chrome Extension Users
A series of high-severity security flaws has been identified in widely deployed Chrome extensions, potentially exposing millions of users to…
Read More » -
Critical Information Disclosure in Gravity SMTP Plugin: Active Exploitation of API Credentials
Security researchers have identified a significant information disclosure vulnerability in the Gravity SMTP WordPress plugin, which is currently being leveraged…
Read More » -
Supply Chain Alert: 140 Mastra npm Packages Compromised via Typosquatted Dependency
A sophisticated software supply chain attack has recently targeted the JavaScript ecosystem, compromising over 140 npm packages within the popular…
Read More » -
Serverless Phishing: How Threat Actors Weaponize GitHub Pages and APIs for Large-Scale Financial Fraud
A highly sophisticated, long-running phishing campaign has transitioned into a modular, serverless architecture, specifically designed to exploit the trust of…
Read More »