A large-scale malvertising campaign active since January 2026 has been observed targeting U.S.-based individuals searching for tax-related documents to serve rogue installers for ConnectWise ScreenConnect that drop a tool named… Read More »Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR
An ongoing phishing campaign is targeting French-speaking corporate environments with fake resumes that lead to the deployment of cryptocurrency miners and information stealers. “The campaign uses highly obfuscated VBScript files… Read More »Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner
On February 25, 2026, Gartner published its inaugural Market Guide for Guardian Agents, marking an important milestone for this emerging category. For those unfamiliar with the various Gartner report types,… Read More »5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents
Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency wallets and sensitive data. The activity is being tracked by ReversingLabs as the… Read More »Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials
Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor known as TeamPCP, the cloud-native cybercriminal operation also behind the Trivy… Read More »TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials
Cybersecurity has changed fast. Roles are more specialized, and tooling is more advanced. On paper, this should make organizations more secure. But in practice, many teams struggle with the same basic… Read More »The Hidden Cost of Cybersecurity Specialization: Losing Foundational Skills
Citrix has released security updates to address two vulnerabilities in NetScaler ADC and NetScaler Gateway, including a critical flaw that could be exploited to leak sensitive data from the application.… Read More »Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks
A 26-year-old Russian citizen has been sentenced in the U.S. to 6.75 years (81 months) in prison for his role in assisting major cybercrime groups, including the Yanluowang ransomware crew,… Read More »U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware Damage
The North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, have been attributed to a malware family tracked as StoatWaffle that’s distributed via malicious Microsoft Visual… Read More »North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware
Another week, another reminder that the internet is still a mess. Systems people thought were secure are being broken in simple ways, showing many still ignore basic advisories. This edition… Read More »⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More