CISA, NSA, and the Canadian Centre for Cyber Security released a joint Malware Analysis Report on December 4, 2025, warning…
KawaiiGPT is an open‑source “kawaii” command‑line chatbot that aims to offer WormGPT‑style, unrestricted AI assistance for free by chaining together…
GitLab's Vulnerability Research team has uncovered an active, large-scale supply chain attack spreading destructive malware through the npm ecosystem using…
Cobalt Strike 4.12 launched on November 24, 2025, bringing major updates for red team operators, including a refreshed graphical user…
Developers woke to alarms on November 24, 2025, as Shai-Hulud malware resurfaced in a bolder attack. This "Second Coming" affected…
Cyber attackers compromised Zapier's NPM account in late November 2025, infecting multiple packages as part of the Shai-Hulud 2.0 malware…
A tiny Raspberry Pi device, no bigger than a credit card, has emerged as a deadly weapon in modern ATM…
In a sweeping crackdown on cybercrime infrastructure, international law enforcement agencies dismantled key components of three prominent malware families during…
A new two-stage malware family has emerged, targeting cryptocurrency enthusiasts and everyday users alike. Dubbed LeakyInjector and LeakyStealer by researchers…
Threat actors are exploiting OneDrive.exe through DLL sideloading to inject and execute malicious code, leveraging the trusted Microsoft application for…