Coinbase has reported the first arrests in its investigation into the sale of customer data: police in Hyderabad, India, have detained a former exchange support employee suspected of accepting bribes and handing customer records...
In late December, an unwelcome supply-chain surprise erupted around the popular text editor EmEditor. According to the developer, between December 19 and 22, 2025, the download button on the official website may have served...
Fortinet has warned administrators that real-world attacks are once again exploiting the vulnerability FG-IR-19-283 (CVE-2020-12812), first disclosed in July 2020. Under certain FortiGate configurations, the flaw allows attackers to bypass two-factor authentication and log...
The latest iteration of the macOS stealer known as MacSync has learned to infiltrate victims’ machines almost “like a legitimate application.” According to Jamf, it is now distributed as a signed Swift app packaged...
SAMLSmith is a C# tool for generating custom SAML responses and implementing Silver SAML and Golden SAML attacks. It provides comprehensive functionality for security researchers and penetration testers working with SAML-based authentication systems. Use...
A critical vulnerability in the globally used workflow automation platform n8n allows attackers to execute arbitrary code remotely. Tracked as CVE-2025-68613, the flaw carries an exceptionally high CVSS score of 9.9 out of 10....
A malicious package named lotusbail has been uncovered in the npm repository, masquerading as a library for working with WhatsApp Web while quietly siphoning conversations and granting attackers persistent access to user accounts. According...
Founding is a tool that processes shellcode in .bin, .exe, or .dll formats, applying advanced obfuscation or encryption techniques to generate stealthy binaries with sophisticated execution methods. Features Core Features (Applied in Every Compilation) Dynamic API Hashing Generates unique hash values...
The U.S. Department of Justice has brought charges against dozens of individuals in connection with a wave of ATM thefts carried out using the Ploutus malware. The department announced that two federal grand juries...
The Argentine football giant Club Atlético River Plate (CARP) has become a target of extortion by the Qilin ransomware group. The club has appeared on the group’s dark web leak site, where it was...
Romania’s National Administration of Water Resources has fallen victim to a large-scale cyberattack that resulted in the encryption of roughly one thousand workstations and servers. The breach occurred over the past weekend and affected...
French law enforcement authorities have arrested a 22-year-old man suspected of orchestrating a recent cyberattack against the country’s Ministry of the Interior. The incident occurred in mid-December and affected the ministry’s internal email servers....
