Cybersecurity

A malicious Go module impersonates a legitimate "golang.org/x/crypto" library to steal secrets.The malware harvests passwords, creates SSH backdoor access, and deploys the Linux backdoor...

Attackers are distributing a new Remote Access Trojan (RAT) disguised as gaming software through browsers and chat apps.The malware uses stealthy techniques, modifies Microsoft...

A new botnet loader called Aeternum C2 uses the public Polygon blockchain for its command-and-control infrastructure, making it highly resistant to takedown.The malware, written...

A new cyber-espionage campaign, UAT-10027, is actively targeting U.S. education and healthcare organizations.The attackers deploy a previously unseen backdoor called Dohdoor, which uses DNS-over-HTTPS...

A malicious package named StripeApi.Net was discovered on the NuGet Gallery impersonating the official Stripe.net library.The typosquatted package was designed to secretly exfiltrate sensitive...

Researchers at Check Point disclosed critical vulnerabilities in Anthropic's Claude Code AI assistant.The flaws, including CVE-2025-59536 and CVE-2026-21852, could allow remote code execution and...

NuGet campaign exfiltrated ASP.NET Identity data and created backdoors after amassing over 4,500 downloads.Separately, a malicious npm package, ambar-src, was downloaded over 50,000 times...

Former L3Harris manager Peter Williams sentenced to over seven years for stealing eight zero-day exploits and selling them to a Russian broker.The exploits, sold...