Adversaries have once again targeted the npm supply chain, though this incursion pursued a surgical and perilous objective: packages integral to developers within the SAP ecosystem. The malicious campaign, designated “Mini Shai-Hulud,” appears modest...
The GlassWorm campaign has resurfaced within the developer community, though the adversaries have adopted a more surreptitious operational profile. Rather than disseminating overtly malicious extensions via OpenVSX, they initially publish innocuous facsimiles of popular...
The ubiquitous Python library elementary-data has emerged as a conduit for the exfiltration of sensitive developer telemetry. The compromised iteration infiltrated not only the PyPI repository but also the project’s official Docker images, causing...
A clandestine Android dropper, masquerading as a mundane PDF reader, has once again infiltrated the Google Play Store. While the application appeared to function as advertised—seamlessly opening documents without initially arousing suspicion—it harbored the...
A sophisticated destructive malware, designated as Lotus Wiper, has been identified within Venezuela, specifically targeting the energy and public utility sectors. The artifacts associated with this incursion were disclosed in the public domain in...
Routers that have long been decommissioned from official support have suddenly become the epicenter of a resurgent wave of cyber incursions. Adversaries have begun aggressively exploiting a legacy vulnerability to surreptitiously conscript domestic hardware...
A website administrator utilizing the Joomla platform observed a perplexing phenomenon: myriad surreptitious links to third-party merchandise had spontaneously manifested across various pages. Although the product catalog remained ostensibly unaltered and no novel entries...
A vulnerability within the control panel of the Rhadamanthys infostealer unexpectedly provided a rare opportunity to safeguard victims, though it stopped short of a definitive victory over the adversaries. This narrative, unveiled at the...
Ransomware syndicates are increasingly adopting the clandestine practice of concealing their malicious artifacts not merely adjacent to the operating system, but directly within its architectural framework. The operators of Payouts King have inaugurated the...
In the incipient months of 2026, search engine advertisements have once again emerged as a convenient veil for sophisticated assaults on European enterprises. Analysts from Orange Cyberdefense have delineated infection chains wherein the SmokedHam...
The commercial spyware Predator has proven far more ingenious than previously surmised. Rather than merely infiltrating the iPhone’s operating system, the program exploits the processor’s internal architecture to secure unfettered access to kernel memory,...
The compromise of a residential router may initially appear as a localized grievance, while the manipulation of code within GitHub Actions seems an entirely disparate narrative. However, the events of March 2026 have demonstrated...
