Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

5 months ago

Researchers found malicious npm and PyPI packages tied to a fake recruitment campaign linked to North Korea’s Lazarus Group. ReversingLabs…

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 84

5 months ago

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware…

Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION

5 months ago

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs…

Fintech firm Figure disclosed data breach after employee phishing attack

5 months ago

Fintech firm Figure confirmed a data breach after hackers used social engineering to trick an employee and steal a limited…

U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog

5 months ago

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in BeyondTrust RS and PRA to its Known Exploited…

Suspected Russian hackers deploy CANFAIL malware against Ukraine

5 months ago

A new alleged Russia-linked APT group targeted Ukrainian defense, government, and energy groups, with CANFAIL malware. Google Threat Intelligence Group…

New threat actor UAT-9921 deploys VoidLink against enterprise sectors

5 months ago

A new threat actor, UAT-9921, uses the modular VoidLink framework to target technology and financial organizations, Cisco Talos reports. Cisco…

Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release

5 months ago

Attackers quickly targeted BeyondTrust flaw CVE-2026-1731 after a PoC was released, enabling unauthenticated remote code execution. Threat actors rapidly began…

Google: state-backed hackers exploit Gemini AI for cyber recon and attacks

5 months ago

Google says nation-state actors used Gemini AI for reconnaissance and attack support in cyber operations. Google DeepMind and GTIG report…

U.S. CISA adds SolarWinds Web Help Desk, Notepad++, Microsoft Configuration Manager, and Apple devices flaws to its Known Exploited Vulnerabilities catalog

5 months ago

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SolarWinds Web Help Desk, Notepad++, Microsoft Configuration Manager, and Apple devices flaws to…

This website uses cookies.