Malicious VS Code Extension Targets Developers with Credential Theft
A compromised Nx Console extension silently harvested developer credentials from password managers, cloud services, and code repositories through a multi stage attack on VS Code users.
The Latest
Automation and AI Workflows to Speed Up Network Incident Response
A live webinar on June 2, 2026 will demonstrate how AI driven automation can eliminate manual bottlenecks in network incident…
Critical ChromaDB Vulnerability Lets Attackers Take Over AI Servers Remotely
HiddenLayer researchers found that the authentication check in ChromaDB's Python API runs too late, allowing attackers to load and execute…
New SHub Malware Variant Exploits Fake Google Update on macOS
The SHub malware family's latest variant bypasses Apple security by impersonating Google Software Update and using AppleScript to evade standard…
North Korean Espionage Group Targets Recruiters and Crypto Users in Multiphase Campaign
Four separate spear phishing campaigns used fake resumes and Solana meme coin content to deploy malware through trusted platforms like…
Crypto ATM Scams Surge 58% in 2025 as FBI Reports Record Losses
Crypto ATM scams cost American victims more than $388 million in 2025, with the FBI reporting a 58% surge in…
Discord Encrypts All Voice and Video Calls by Default Using Open Source Protocol
Discord's default encryption for all voice and video calls now covers 200 million monthly active users across desktop, mobile, and…
7-Eleven Confirms April Breach Tied to Salesforce Attack
The convenience store giant confirmed attackers accessed franchisee documents and personal data in early April, with the ShinyHunters group leaking…
Microsoft revives flexible taskbar and Start menu controls in latest Windows 11 test build
The new Windows 11 preview build lets users move the taskbar to any screen edge and toggle off Start menu…
Persistent Location Prompts Plague Microsoft Teams on Mac After Security Patch
A macOS security update is preventing the operating system from saving location permission choices for the Teams app, causing a…
Palo Alto Networks Patches Actively Exploited PAN OS Flaw
Palo Alto Networks addresses a critical buffer overflow in PAN OS that attackers have exploited since last month to deploy remote access tools.
EvilTokens Platform Exploits OAuth Consent to Breach Hundreds of Organizations
The EvilTokens phishing platform exploits OAuth consent grants to bypass multi factor authentication by tricking users into granting persistent refresh…
Grafana Source Code Stolen in GitHub Token Breach by Extortion Group
Grafana Labs refused to pay a ransom after hackers used a stolen GitHub token to access and download the company's…
INTERPOL Ramz Initiative Targets Phishing and Scam Operations Across 13 Countries
The operation, spanning 13 countries over five months, identified nearly 4,000 victims and seized 53 servers used to facilitate phishing…
Spotlight
Exploit Code Released for New Linux Kernel Privilege Escalation Flaw
Proof of concept exploit code has been released for a Linux kernel vulnerability that bypasses copy on write protections to allow local privilege escalation on distributions with CONFIG_RXGK enabled.
Microsoft Edge Halts Preloading of Stored Credentials at Startup
Microsoft Edge will no longer load saved passwords into process memory at startup, a proactive security improvement under the company's Secure Future Initiative.
Four-Faith Industrial Routers Exploited to Fuel Global Botnet Campaign
Attackers are exploiting a critical authentication bypass flaw in Four-Faith industrial routers to enroll them into botnets for DDoS and proxy attacks.
Compromised CI/CD Tool Steals Pipeline Secrets via Tag Spoofing Attack
Attackers silently redirected all version tags of a popular GitHub Action to malicious code that steals pipeline credentials from runner memory.
Features
Threat Actors Weaponize Trusted Cloud Service to Steal Data from Malaysian Agencies
Custom Python scripts and a trusted cloud storage service were used to silently exfiltrate data from multiple Malaysian government networks…
Critical Flaws in SEPPMail Email Gateway Open Path to Remote Code Execution
Seven security holes in SEPPMail's email gateway, including a critical path traversal and eval injection, could let attackers read all…
Drupal Urges Site Administrators to Prepare for Emergency Core Security Patches
The Drupal Security Team warns that exploits may emerge within hours of the May 20 patch release.
AI Model Now Constructs Working Exploits from Vulnerability Chains
Anthropic's Mythos Preview AI model can now chain multiple low severity bugs into working proof-of-concept exploits, reducing the time between…
Windows 11 Patch Tuesday Update Fails on Systems With Full Boot Partitions
Microsoft acknowledges that the May 2026 Windows 11 cumulative update fails on devices where the EFI System Partition lacks free…
Closing the Visibility Gap: A Framework for Governing Employee AI Use
A structured framework helps organizations gain visibility into unapproved AI tools employees are using while providing a clear path for…