Plus three other stealers in three other packages, all from the same scumbag
Frontier AI models like Mythos are making vulnerability discovery fast and cheap. Here's how defenders use threat intelligence and agentic processing to prioritize and act at the same speed.
INTERPOL has coordinated a first-of-its-kind cybercrime crackdown across the Middle East and North Africa (MENA) that led to 201 arrests and the identification of an additional 382 suspects. The...
In March 2026, the Colombian fintech company Addi identified unauthorised activity on its platform and advised customers that "it is possible that your personal information may have been...
Monday opens with a trust problem. A mail server flaw is under active use. A network control system was targeted. Trusted packages were poisoned. A fake model page pushed a stealer. Then came the...
Operation Ramz resulted in 201 arrests and disrupted phishing services, malware and financial scams. The post Interpol leads cybercrime crackdown across 13 countries in Middle East, North Africa...
What happens when a phishing email looks clean enough to pass through security, but dangerous enough to expose the business after one click? That is the gap many SOCs still struggle with: the...
Plus ModuleJail, a radical proposal for minimizing the impact of similar bugs
More than 200 individuals were arrested for cybercrime activities during INTERPOL's Operation Ramz, which focused on the Middle East and North Africa. [...]
A new variant of the 'SHub' macOS infostealer uses AppleScript to show a fake security update message and installs a backdoor. [...]
Supply chain attackers are not only trying to slip malicious code into trusted software. They are trying to steal the access that makes trusted software possible. Recently, three separate...
Ivanti, Fortinet, n8n, SAP, and VMware have released security fixes for various vulnerabilities that could be exploited by bad actors to bypass authentication and execute arbitrary code. Topping...
Multiple vulnerabilities have been discovered in NGINX, the most severe of which could allow for remote code execution. NGINX is a software used for web serving, reverse proxying, caching, and...
Shai-Hulud worm exploited GitHub Actions misconfiguration to poison shared cache, now project weighing nuclear option on unsolicited contributions
Executive Summary The Gentlemen is an active ransomware and extortion operation that emerged publicly in the second half of 2025 and rapidly scaled into a high-volume threat actor. Rather than a...
Researchers say 18-year-old flaw already being probed and exploited just days after disclosure
Many employees already use shadow AI tools at work without security review. Adaptive Security breaks down how teams can build practical AI governance without adding friction for employees. [...]
Cybersecurity researchers have discovered four new npm packages containing information-stealing malware, one of which is a clone of the Shai-Hulud worm open-sourced by TeamPCP. The list of...
The clock is ticking on Q-Day, the looming yet unknown date when quantum computing will have the capacity to quickly and easily break the encryption keys that keep most internet communication...
Unlike most cyber security regulations, the EU’s Cyber Resilience Act is about product safety rather than processes or certification, extending the CE mark from the physical side of products to...
Shift comes amid mounting reports of successful social engineering attacks targeting higher-ups in government
Medical professionals are pushing back against artificial intelligence assuming the persona of a doctor, arguing it amounts to practicing without a license. One solution floated in the Journal of...
Under the Defense Department’s nearly $1.5 trillion fiscal 2027 budget request, the Army would have almost $1 billion in procurement funding to spend on small counter unmanned aerial system...
Europe is pouring more than €2 billion into sovereign cloud initiatives designed to reduce exposure to US legal reach. The EU’s IPCEI-CIS program funds infrastructure development. France qualifies...
Over the past few months, the headlines might give the impression that the U.S. court system is deftly navigating the world of tech regulation. A federal judge quickly enjoined the Department of...
Pope Leo XIV has approved the creation of a new Vatican commission on artificial intelligence to coordinate the Holy See’s response to the rapidly expanding technology and its implications for...
The UK’s financial services firms must take active steps to manage the cybersecurity risks stemming from frontier AI, the UK government, the UK’s Financial Conduct Authority (FCA) and Bank of...
The Shai-Hulud malware leaked last week is now used in new attacks on the Node Package Manager (npm) index, as infected packages emerged over the weekend. [...]
The civic uproar began quietly, when a mom walking her newborn spotted a strange black contraption at the end of her block: a camera topped with a solar panel. Dierdre Shea researched the camera...
Students at one of Russia’s leading engineering universities are getting a lucrative offer: ditch their studies for a year, fly drones for the military and earn more than 5 million rubles...