Threat actors are distributing the Deno-based remote access trojan (RAT) through fake software repositories on GitHub and SourceForge. These malicious packages masquerade as legitimate development tools and productivity software, targeting developers and tech-savvy users. The Deno RAT provides attac
GitHub experienced a major global outage that brought critical CI/CD pipelines to a halt across thousands of organizations. The incident affected GitHub Actions, GitHub Pages, API services, and repository access, leaving development teams unable to deploy code, run automated tests, or access version
MFA prompt bombing, also known as MFA fatigue attacks, exploits human psychology rather than technical vulnerabilities. Attackers who have already stolen credentials flood victims with dozens or hundreds of push notification authentication requests until users accidentally approve one or simply acce
India’s Computer Emergency Response Team (CERT-In) has issued a directive requiring organizations to patch critical vulnerabilities in internet-facing systems within 12 hours of notification. This aggressive timeline responds to the accelerating threat landscape where AI-assisted attacks are weaponi
The Oncology Institute of Hope and Innovation (TOI), a California-based cancer care provider, disclosed a significant data breach affecting patient information following a cyberattack on a third-party vendor. The incident compromised sensitive patient data including names, Social Security numbers, m
A critical zero-day vulnerability in Hitachi’s KnowledgeDeliver Learning Management System (LMS) is being actively exploited to deploy Godzilla webshells and Cobalt Strike beacons. Attackers are leveraging an authentication bypass flaw to gain unauthorized access, establish persistent backdoors, and
A severe vulnerability in 7-Zip, one of the world’s most popular file compression utilities, allows attackers to execute arbitrary code on victim systems through specially crafted archive files. The flaw affects multiple versions of the software and poses significant risks to organizations and indiv
InvisibleFerret malware has evolved its evasion tactics by abandoning traditional Python scripts in favor of compiled Python (.pyd) and shared object (.so) files. This strategic shift allows the malware to bypass signature-based detection systems that primarily focus on script-based threats. The upd
Threat actors are employing sophisticated social engineering tactics by disguising malicious Linux payloads as legitimate SSH-related files during software package installations. The attack leverages user trust in familiar system utilities, hiding malware within files named to resemble standard Open
iOS security researchers at Mysk have revealed that WhatsApp stores chat histories in an unencrypted SQLite database accessible to other Meta apps on the same Apple device. While end-to-end encryption protects messages in transit, there is no equivalent protection once those messages are stored locally.