Cybersecurity

A phishing campaign codenamed VENOMOUS#HELPER has targeted over 80 organizations, primarily in the U.S., since at least April 2025.Attackers use legitimate Remote Monitoring and...

The China-based Silver Fox group is targeting organizations in Russia and India with a new Python backdoor called ABCDoor.The campaign uses phishing emails disguised...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a critical Linux flaw to its exploit catalog on May 3, 2026.The vulnerability, CVE-2026-31431 ("Copy...

Vietnamese threat actors used Google AppSheet as a phishing relay to compromise roughly 30,000 Facebook accounts.The campaign, codenamed AccountDumpling, stole credentials through emails pretending...

Two cybercrime groups, Cordial Spider and Snarky Spider, are conducting rapid, high-impact data theft and extortion campaigns primarily within trusted SaaS environments.The attackers use...

Threat actors published two malicious versions of the popular Python package Lightning (2.6.2 and 2.6.3) on April 30, 2026, as part of a supply...

A stealthy Python backdoor called DEEP#DOOR uses a tunneling service for command-and-control to steal sensitive data, including cloud credentials and SSH keys.The malware embeds...

A critical Linux flaw allows an unprivileged local user to write to a file's cache and escalate to root privileges.The vulnerability, tracked as CVE-2026-31431,...