Search: Community tooling

Grafana says stolen GitHub token let hackers steal codebase

…Threat intelligence specialist Joe Shenouda claims that the gang also deploys an in-memory tool called “shinysp1d3r” to encrypt VMware ESXi targets and disable snapshots. Last year, BleepingComputer analyzed a ShinySp1d3r Windows…

May 18, 2026 · Bill Toulas

Red Hat npm packages compromised to steal developer credentials

…In a statement shared with BleepingComputer, Red Hat said it removed the affected packages after becoming aware of the incident and that the compromise was limited to internal development tooling. "Red Hat…

Jun 1, 2026 · Lawrence Abrams

FBI warns of in-person data theft attacks from extortion gang

…Automated pentesting tools deliver real value, but they were built to answer one question: can an attacker move through the network? They were not built to test whether your controls block threats…

May 27, 2026 · Sergiu Gatlan

Microsoft warns of new Defender zero-days exploited in attacks

…A second vulnerability ( CVE-2026-45498 ) affects systems running the Microsoft Defender Antimalware Platform 4.18.26030.3011 and earlier, a collection of security tools also used by Microsoft's System Center…

May 21, 2026 · Sergiu Gatlan

Over 73,000 French govt employees affected in Tchap messenger breach

…is a decentralized collaboration tool and instant messaging platform for the French public sector, based on the Matrix protocol. After becoming the default app for work communications for all civil servants in…

Jun 12, 2026 · Sergiu Gatlan

KnowledgeDeliver flaw exploited as a zero-day to install web shells

…State-sponsored actors also used ViewState deserialization attacks to deploy a reconnaissance tool named WeepSteel on Sitecore servers that exposed the ASP.NET machine key. The Validation Gap: Automated Pentesting Answers One…

May 26, 2026 · Ionut Ilascu

New IronWorm malware hits 36 packages in npm supply-chain attack

…According to researchers at supply-chain and devops company JFrog, IronWorm is written in Rust, hides behind an eBPF kernel rootkit, and communicates with the operator over the Tor network. The Rust…

Jun 4, 2026 · Bill Toulas

The ‘Miasma’ worm source code briefly leaked on GitHub

…Analysis of the code showed that the toolkit requires no command-and-control (C2) infrastructure to operate, as it uses GitHub for that purpose. The framework harvests credentials from cloud providers, CI…

Jun 10, 2026 · Bill Toulas

New critical Exim mailer flaw allows remote code execution

…Identified as CVE-2026-45185 , the security issue impacts some Exim versions before 4.99.3 that use the default GNU Transport Layer Security (GnuTLS) library for secure communication. It is a…

May 13, 2026 · Bill Toulas

Instructure reaches 'agreement' with ShinyHunters to stop data leak