UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

March 11, 2026 at 01:01PM A threat actor known as UNC6426 leveraged keys stolen following the supply chain compromise of the nx…

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

March 11, 2026 at 10:42AM Cybersecurity researchers have discovered five malicious Rust crates that masquerade as time-related …

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

March 10, 2026 at 04:25PM The Russian state-sponsored hacking group tracked as APT28 has been observed using a pair of implants…

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

March 10, 2026 at 12:47PM Salesforce has warned of an increase in threat actor activity that's aimed at exploiting misconfi…

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

March 10, 2026 at 11:47AM The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws…

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

March 10, 2026 at 12:01AM Cybersecurity researchers have discovered a malicious npm package that masquerades as an OpenClaw ins…

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

March 9, 2026 at 07:16PM Another week in cybersecurity. Another week of "you've got to be kidding me." Attackers …

Can the Security Platform Finally Deliver for the Mid-Market?

March 9, 2026 at 05:15PM Mid-market organizations are constantly striving to achieve security levels on a par with their enterp…

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

March 9, 2026 at 03:58PM Two Google Chrome extensions have turned malicious after what appears to be a case of ownership transf…

Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure

March 9, 2026 at 12:51PM High-value organizations located in South, Southeast, and East Asia have been targeted by a Chinese th…

OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues

March 7, 2026 at 09:58PM OpenAI on Friday began rolling out Codex Security, an artificial intelligence (AI)-powered security ag…

Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model

March 7, 2026 at 04:51PM Anthropic on Friday said it discovered 22 new security vulnerabilities in the Firefox web browser as p…