Microsoft's massive Patch Tuesday: It's raining bugs
… "I never wanted to reopen a blog and a new github account to drop code... …
Search
LiteLLM infected with credential-stealing code via Trivy
… According to security researcher Rami McCarthy , 19 of the 25 accounts used to post were also used in the Trivy spam campaign. The Python Packaging Authority PyPA has published a security advisory about the LiteLLM compromise. …
Ancient Excel bug comes out of retirement for active attacks
… It can be used to deceive employees, partners, or customers by presenting falsified information within trusted SharePoint environments." ® patches excel cybersecurity and infrastructure security agency vulnerability security
Credential-stealing crew spoofs Ivanti, Fortinet, Cisco VPNs
… But there are couple key and vendor-neutral security suggestions that we want to highlight. First - and we cannot stress this enough - enforce multi-factor authentication MFA on all accounts. …
Snoops plant info-stealing malware on iPhones, Google warns
… These instances used a different JavaScript backdoor called GhostSaber with capabilities including device and account enumeration, file listing, data exfiltration, and remote JavaScript code execution. …
FBI investigating breach that reportedly hit wiretapping net
… Crypto flows to sanctioned entities Blockchain-watcher Chainalysis last week published research claiming sanctioned entities managed to conduct $154 billion worth of cryptocurrency transactions in 2025, a 694 percent year-over-year increase. $104 billion of that haul went to sanctioned entities, wi…