​A high-severity flaw in Amazon Q Developer let a malicious repository run commands and steal a developer’s cloud credentials. The path was short: a developer opens the repo, trusts the… Read More »Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs

​A flaw in the Linux kernel’s traffic-control subsystem can let a local unprivileged user gain root on affected systems. CVE-2026-46331, nicknamed “pedit COW,” is an out-of-bounds write in the packet-editing… Read More »New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries

​A Chinese-speaking advanced persistent threat (APT) actor has been linked to a new custom backdoor called TinyRCT as part of cyber attacks aimed at government entities and critical infrastructure in… Read More »Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign

​A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on compromised hosts.… Read More »New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks

​The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup… Read More »FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys

​Cybersecurity researchers have flagged a new class of CI/CD workflow weakness that allows attackers to hijack workflows and compromise open-source supply chains. The “critical exploitable pattern” has been codenamed Cordyceps… Read More »Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks

​We are standing at the end of an era we never thought to mourn: the era of human-speed threats. For years, cybersecurity moved to a rhythm organizations could follow. A… Read More »Dawn of the Apex Agentic Adversary

​The U.S. Department of Justice (DoJ) on Tuesday announced the seizure of a cloud computing account put to use by subsidiaries of Cambodia-based corporate conglomerate HuiOne Group, as the Treasury… Read More »DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering

​Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME). The… Read More »Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root

​A Russian-speaking initial access broker (IAB) driven by financial gain is assessed to be behind a large-scale credential-harvesting operation known as FortiBleed that has targeted over 430,000 FortiGate firewalls globally.… Read More »FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation