On or around November 13, 2025, we identified suspicious activity occurring within our environment. In response, we quickly took some of our systems offline to stop the activity and followed our...
On February 23, 2026, Caesars Entertainment, Inc. (“Caesars”) identified suspicious activity in certain cloud-hosted platforms that are used to store data. We immediately activated our incident...
On June 17, 2025, Bomco became aware that certain files in its network may have been accessed by an unauthorized actor. Bomco promptly launched an investigation to determine the nature and scope...
PinTheft, a recently patched Linux privilege escalation vulnerability, now has a publicly available proof-of-concept (PoC) exploit that allows local attackers to gain root privileges on Arch Linux...
We regret to inform you that we recently experienced a data incident. As per our data and security protocols, we immediately commenced a forensic investigation with the assistance of external...
Classes have been canceled in Delano, Minnesota, on Wednesday after the school district said it suffered a "cyber incident." Delano Public Schools says the incident happened Monday night. "The...
GitHub has confirmed that roughly 3,800 internal repositories were breached after one of its employees installed a malicious VS Code extension. [...]
Microsoft has shared mitigations for YellowKey, a recently disclosed Windows BitLocker zero-day vulnerability that grants access to protected drives. [...]
GitHub is investigating a breach of its internal repositories after the TeamPCP hacker group claimed to have accessed approximately 4,000 repositories containing private code. [...]
According to GitHub’s public statement, the company detected unauthorized access involving internal repositories and initiated an ongoing investigation into the scope and potential impact of the...
'Thousands' of US victims, including 12+ machines owned and operated by Redmond
Cybersecurity researchers have disclosed details of a new ad fraud and malvertising operation dubbed Trapdoor targeting Android device users. The activity, per HUMAN's Satori Threat Intelligence...
Verizon’s annual Data Breach Investigations Report uncovered a surge of exploited vulnerabilities, and a growing lack of critical defect remediation industrywide. The post Attackers hit...
Atlassian security advisory (AV26-483)
Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the...
Ubuntu security advisory (AV26-482)
Proof-of-concept (PoC) exploit code has now been released for a recently patched security flaw in the Linux kernel that could allow for local privilege escalation (LPE). Dubbed DirtyDecrypt (aka...
Red Hat security advisory (AV26-481)
Dell security advisory (AV26-480)
I wonder what's in 'external-secret-repo-creds.yaml' and 'AWS-Workspace-Firefox-Passwords.csv'?
I wonder what's in 'external-secret-repo-creds.yaml' and 'AWS-Workspace-Firefox-Passwords.csv'?
IBM security advisory (AV26-479)
Mozilla security advisory (AV26-478)
There is no evidence that the incident has recurred, but the flaw remains unexplained and has not been publicly acknowledged by the company.
A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to run arbitrary code on exposed servers. [...]
The org’s staying mum on the details, but Wednesday’s fixes reach back to unsupported 8.9 branches
The org’s staying mum on the details, but Wednesday’s fixes reach back to unsupported 8.9 branches
Microsoft says it has disrupted a malware-signing-as-a-service (MSaaS) operation that abused the company's Artifact Signing service to generate fraudulent code-signing certificates used by...
Discover the latest on malicious versions of the pypi package durabletask, matching TeamPCP tactics.
In February 2026, a phishing-as-a-service (PhaaS) platform called EvilTokens went live. Within five weeks, it had compromised more than 340 Microsoft 365 organizations across five countries. The...