Drupal critical update to fix bug with high exploitation risk
…can an attacker move through the network? They were not built to test whether your controls block threats, your detection rules fire, or your cloud configs hold. This guide covers the 6…
Search
Top stories
Shai Hulud attack ships signed malicious TanStack, Mistral npm packages
…The commit was referenced via a malicious optional dependency, causing npm to automatically fetch and execute attacker-controlled code during package installation. The malware targets developer secrets, including: GitHub Actions OIDC tokens…
Chinese APT deploys new malware to keep access to hacked networks
…and-control (C2) server switching. The researchers note that Plenet is similar in design to Brockstorm, using the WebSocket protocol for C2 communications and a multiplexing library for simultaneous data streams to…
Google Chrome adds session cookie theft protection for all users
…Since the unique public/private keys used to encrypt and decrypt sensitive data are generated by the security chip, they cannot be stolen, preventing attackers from using stolen session cookies. "DBSC fundamentally…
Microsoft fixes BitLocker recovery issue only for Windows 11 users
…BitLocker is a Windows security feature that encrypts storage drives to protect against data theft. It also often activates recovery mode after hardware changes or TPM (Trusted Platform Module) updates, blocking access…
Critical vm2 sandbox bug lets attackers execute code on hosts
…can an attacker move through the network? They were not built to test whether your controls block threats, your detection rules fire, or your cloud configs hold. This guide covers the 6…
Former US execs plead guilty to aiding tech support scammers
…According to the FBI's 2025 Internet Crime Report , Americans lost at least $2.1 billion to tech support fraud last year based on data collected from nearly 48,000 complaints received…
Exploit released for new PinTheft Arch Linux root escalation flaw
…The vulnerability, named PinTheft by the V12 security team and still waiting to be assigned a CVE ID for easier tracking, exists in the Linux kernel's RDS (Reliable Datagram Sockets) and…
New IronWorm malware hits 36 packages in npm supply-chain attack
…This way, the threat actor can avoid the need for an external command-and-control (C2) altogether. However, the researchers note that this delivery mechanism has not been used in the analyzed…
Windows BitLocker zero-day gives access to protected drives, PoC released
…The disgruntled researcher added that the newly created section could be influenced to manipulate data and various services, including kernel-mode drivers, into trusting specific paths that standard users cannot access. While…