BlueNoroff Uses Fake Zoom Calls to Turn Victims Into Attack Lures
The North Korean group is using stolen victim videos, AI-generated avatars, and fake Zoom calls to scale malware attacks against…
CVE-2026-3854 GitHub flaw enables remote code execution
Critical GitHub flaw CVE-2026-3854 lets attackers run code with a single git push, exploiting a command injection bug. Researchers found…
NSA Chief During Snowden Affair Shares Regrets, Reflections 13 Years Later
Chris Inglis was the head civilian in charge at the NSA when the Snowden leaks exploded. He gets candid about…
Feuding Ransomware Groups Leak Each Other’s Data
When 0APT and KryBit attacked each other, they exposed infrastructure and operational data, giving defenders rare insight into ransomware operations.
Vidar Rises to Top of Chaotic Infostealer Market
The malware has filled the gap created by last year’s law enforcement takedowns of Lumma and Rhadamanthys.
Prevention in the Age of AI Vulnerability Discovery
Why the Mythos moment makes prevention more important, not less Anthropic’s Claude Mythos Preview (Project Glasswing) has pushed a new…
Fresh Wave of GlassWorm VS Code Extensions Slices Through Supply Chain
Attackers continue to scale a campaign to seed Open VSX with seemingly benign VS Code extensions that spread self-propagating malware.
Telegram QR Code Scam: How a Fake QR Scan Leads to Account Takeover
A growing Telegram scam lets attackers take over accounts instantly, without a password or 2FA SMS codes. They trick users…
Cyberattacks in Spain: What small businesses should know
In 2025 alone, Spain recorded 122,223 cybersecurity incidents, a 26% increase compared to 2024, according to National Cybersecurity Institute (INCIBE).…
What Anthropic’s Mythos Means for the Future of Cybersecurity
Two weeks ago, Anthropic announced that its new model, Claude Mythos Preview, can autonomously find and weaponize software vulnerabilities, turning…