Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure

March 9, 2026 at 12:51PM High-value organizations located in South, Southeast, and East Asia have been targeted by a Chinese th…

OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues

March 7, 2026 at 09:58PM OpenAI on Friday began rolling out Codex Security, an artificial intelligence (AI)-powered security ag…

Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model

March 7, 2026 at 04:51PM Anthropic on Friday said it discovered 22 new security vulnerabilities in the Firefox web browser as p…

Iran-Linked MuddyWater Hackers Target U.S. Networks With New Dindoor Backdoor

March 6, 2026 at 03:53PM New research from Broadcom's Symantec and Carbon Black Threat Hunter Team has discovered evidence …

China-Linked Hackers Use TernDoor, PeerTime, BruteEntry in South American Telecom Attacks

March 6, 2026 at 01:52PM A China-linked advanced persistent threat (APT) actor has been targeting critical telecommunications i…

Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV Catalog

March 6, 2026 at 12:00PM The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws …

APT28-Linked Campaign Deploys BadPaw Loader and MeowMeow Backdoor in Ukraine

March 5, 2026 at 03:40PM Cybersecurity researchers have disclosed details of a new Russian cyber campaign that has targeted Ukr…

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

March 5, 2026 at 12:04PM A joint law enforcement operation has dismantled LeakBase, one of the world's largest online forum…

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

March 4, 2026 at 03:07PM Cybersecurity researchers have flagged malicious Packagist PHP packages masquerading as Laravel utilit…

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

March 4, 2026 at 01:44PM Cybersecurity researchers have disclosed details of an advanced persistent threat (APT) group dubbed S…

CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog

March 4, 2026 at 10:05AM The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed…

Fake Tech Support Spam Deploys Customized Havoc C2 Across Organizations

March 3, 2026 at 10:45PM Threat hunters have called attention to a new campaign as part of which bad actors masqueraded as fake…