Cyber Security 2026 Archives • Information Security News

UAT-8302’s Global Espionage Machine Is Hijacking Governments via the Cloud Net

UAT-8302’s Global Espionage Machine Is Hijacking Governments via the Cloud

ddos May 7, 2026

The Chinese cyber-espionage collective UAT-8302 has, for nearly a annum, conducted surreptitious incursions against governmental entities across...

The Support Chat Trap: How a “Customer Screenshot” Led to a Critical Code-Signing Breach at DigiCert

ddos May 5, 2026

A seemingly innocuous file transmitted via a support chat escalated into a significant crisis for DigiCert. An...

Wireshark Remediates 40+ Flaws to Block Remote Code Execution via Malicious Packets capture raw 5G radio frames

Wireshark Remediates 40+ Flaws to Block Remote Code Execution via Malicious Packets

ddos May 4, 2026

Wireshark has undergone a monumental security refinement, with developers remediating over forty vulnerabilities. A subset of these...

Desert Power in the Code: How the “Mini Shai-Hulud” Malware Burrows into SAP’s npm Supply Chain PhantomVAI malware loader npm Token Farming SesameOp Malware Flyoobe Malware FlipSwitch Rootkit fezbox Malware ModStealer Malware NightshadeC2 OldGremlin AI ransomware LummaStealer Qilin, ransomware-as-a-service Human Cybersecurity Ransomware ACRStealer Interlock Ransomware OVERSTEP Rootkit Malduck WordPress Malware

PhantomVAI malware loader npm Token Farming SesameOp Malware Flyoobe Malware FlipSwitch Rootkit fezbox Malware ModStealer Malware NightshadeC2 OldGremlin AI ransomware LummaStealer Qilin, ransomware-as-a-service Human Cybersecurity Ransomware ACRStealer Interlock Ransomware OVERSTEP Rootkit Malduck WordPress Malware

Desert Power in the Code: How the “Mini Shai-Hulud” Malware Burrows into SAP’s npm Supply Chain

ddos May 4, 2026

Adversaries have once again targeted the npm supply chain, though this incursion pursued a surgical and perilous...

Vimeo Revokes Access Following Security Breach at Third-Party Partner Anodot Trellix source code breach Salesforce Gainsight Breach Logitech Data Exfiltration Avnet data breach Chess.com third-party breach Data leak, PayPal AI Security Supply Chain Security xAI Security Qantas Data Breach Android Spyware

Trellix source code breach Salesforce Gainsight Breach Logitech Data Exfiltration Avnet data breach Chess.com third-party breach Data leak, PayPal AI Security Supply Chain Security xAI Security Qantas Data Breach Android Spyware

Vimeo Revokes Access Following Security Breach at Third-Party Partner Anodot

ddos April 30, 2026

The video hosting vanguard Vimeo has disclosed a security transgression impacting its user repository, precipitated by a...

The “Snow” Storm: How UNC6692 Uses Microsoft Teams and Email Bombing to Breach Corporate Fortresses A scripted distraction sequence used to mask the background exfiltration of stolen data

A scripted distraction sequence used to mask the background exfiltration of stolen data

The “Snow” Storm: How UNC6692 Uses Microsoft Teams and Email Bombing to Breach Corporate Fortresses

ddos April 29, 2026

Corporate correspondence has once again emerged as a convenient portal for adversaries. In this nascent campaign, the...

Invisible Hands in the Machine: The Calculated Global Assault on Exposed Industrial Controllers

ddos April 28, 2026

Researchers have unearthed a pervasive offensive targeting industrial controllers that had been inadvertently exposed to the public...

Inside the Protocol: Master Kerberos Defense and Detection with Kerlab’s Rust Toolkit Kerlab Kerberos Rust

Inside the Protocol: Master Kerberos Defense and Detection with Kerlab’s Rust Toolkit

ddos April 27, 2026

Kerlab A Rust implementation of Kerberos for FUn and Detection Kerlab was developed just to drill down kerberos protocol...

Under Active Fire: CISA Warns of New Exploits in Samsung, SimpleHelp, and D-Link Hardware Linux Kernel RCE Windows SMB Adobe vulnerability Sudo Privilege Escalation CISA D-Link Vulnerabilities PaperCut Vulnerability

Linux Kernel RCE Windows SMB Adobe vulnerability Sudo Privilege Escalation CISA D-Link Vulnerabilities PaperCut Vulnerability

Under Active Fire: CISA Warns of New Exploits in Samsung, SimpleHelp, and D-Link Hardware

ddos April 27, 2026

The United States Cybersecurity and Infrastructure Security Agency (CISA) has once again augmented its repository of vulnerabilities...

Ghost in the Browser: Hijacking Authenticated Sessions via NTLM Relay with ghostsurf Browser session hijacking SOCKS proxy

Ghost in the Browser: Hijacking Authenticated Sessions via NTLM Relay with ghostsurf

ddos April 8, 2026

ghostsurf NTLM HTTP relay tool with SOCKS proxy for browser session hijacking. Capture NTLM auth, relay to...

Critical 9.2 Flaw in Gigabyte Control Center Grants Remote Access

ddos April 2, 2026

A computational architecture may fall under alien subjugation due to a ubiquitous utility pre-installed “from the factory.”...

The CanisterWorm Catalyst: How a Compromised Vulnerability Scanner Set the NPM Ecosystem Ablaze

ddos March 24, 2026

A singular assault upon a developer instrument escalated within a mere twenty-four hours into a catastrophic chain...

Ghost in the Beacon: Mastering In-Memory PE Execution with BOF RunPE BOF RunPE Cobalt Strike

Ghost in the Beacon: Mastering In-Memory PE Execution with BOF RunPE

ddos March 23, 2026

BOF RunPE is a Beacon Object File for Cobalt Strike that executes PE files entirely in-memory within...

The AI Accelerator: How 29 Million Leaked Secrets are Fueling a New Era of Digital Insecurity

ddos March 23, 2026

The ubiquitous integration of artificial intelligence into software development over the past year has precipitously accelerated production...

The Illusion of Sapience: Unmasking the “Performative” AI and the Rise of Agentic Malware

ddos March 23, 2026

Malefactors are already endeavoring to weave artificial intelligence into the fabric of malicious software, yet the current...

The Interlock Chronicles: How a Cisco Zero-Day Fueled a Month-Long Ransomware Rampage Cisco Firewall Zero-Day Cisco ASA Zero-Day Cisco Zero-Day Critical Vulnerability Cisco ISE Exploitation Cisco ISE, Critical RCE

Cisco Firewall Zero-Day Cisco ASA Zero-Day Cisco Zero-Day Critical Vulnerability Cisco ISE Exploitation Cisco ISE, Critical RCE

The Interlock Chronicles: How a Cisco Zero-Day Fueled a Month-Long Ransomware Rampage

ddos March 21, 2026

The Interlock syndicate successfully weaponized a critical vulnerability nestled within Cisco firewalls long before the global community...

Cyber Security 2026

UAT-8302’s Global Espionage Machine Is Hijacking Governments via the Cloud

Wireshark Remediates 40+ Flaws to Block Remote Code Execution via Malicious Packets

Vimeo Revokes Access Following Security Breach at Third-Party Partner Anodot

Invisible Hands in the Machine: The Calculated Global Assault on Exposed Industrial Controllers

Inside the Protocol: Master Kerberos Defense and Detection with Kerlab’s Rust Toolkit

Under Active Fire: CISA Warns of New Exploits in Samsung, SimpleHelp, and D-Link Hardware

Ghost in the Browser: Hijacking Authenticated Sessions via NTLM Relay with ghostsurf

Critical 9.2 Flaw in Gigabyte Control Center Grants Remote Access

The CanisterWorm Catalyst: How a Compromised Vulnerability Scanner Set the NPM Ecosystem Ablaze

Ghost in the Beacon: Mastering In-Memory PE Execution with BOF RunPE

The AI Accelerator: How 29 Million Leaked Secrets are Fueling a New Era of Digital Insecurity

The Illusion of Sapience: Unmasking the “Performative” AI and the Rise of Agentic Malware

The Interlock Chronicles: How a Cisco Zero-Day Fueled a Month-Long Ransomware Rampage

You may have missed

The War for Your Documents: Why The Document Foundation is Challenging Microsoft’s OOXML Monopoly

Urgent Patch: Microsoft Defender Update Fixes Critical SYSTEM-Level Privilege Escalation Flaw

The Pre-Boot Breach: Microsoft Releases Critical Emergency Script to Defend Against “YellowKey” BitLocker Bypass

The Reddit Clone: Meta Secretly Launches “Forum” App to Unbundle Facebook Groups