Trojanized Pyrogram Forks Unleash Backdoor on Telegram Bot Servers

A campaign dubbed 'Operation Navy Ghost' has been distributing trojanized Pyrogram packages on PyPI since November 2025, giving attackers remote code execution on compromised Telegram bot servers.

The Latest

Breaking News and Alerts

Chrome Session Cookie Theft via Malicious Extension Bypasses MFA

Attackers are abusing Chrome Native Messaging to deploy a malicious extension that steals session cookies and bypasses MFA protections.

Spotlight

Cybersecurity Profiles and Stories

Deceptive AI Skill Evades Security Scanners to Reach Thousands of Agents

Security researchers demonstrated that AI agent skills can bypass multiple scanners by hosting malicious instructions on external websites that are only fetched after the skill passes initial review.

Blackfield Ransomware Group Hits Japanese Motor Giant Nidec’s Taiwanese Subsidiary

Blackfield ransomware demands $2 million from Nidec Corporation after compromising its Taiwanese subsidiary, threatening to leak stolen data if payment is not made.

Salesforce Disables Klue App After OAuth Token Theft Leads to Data Exposure

Salesforce disabled Klue's app integration after attackers used a legacy credential to steal OAuth tokens and extract CRM data from multiple customer environments.

GitHub Advisory Database Overwhelmed by Record Surge in Vulnerability Reports

GitHub's advisory database hit a record 1,560 advisories in May 2026, but review delays now stretch to weeks due to an overwhelming surge in vulnerability submissions.

Features

Research and Thought Leadership