“Handala Hack” - Unveiling Group's Modus Operandi
“Handala Hack” - Unveiling Group's Modus Operandi
14.03.2026 19:54
👍 0
🔁 0
💬 0
📌 0
BeatBanker: both banker and miner for Android
BeatBanker: both banker and miner for Android
14.03.2026 19:54
👍 0
🔁 0
💬 0
📌 0
When Trusted Websites Turn Malicious: WordPress Compromises Advance Global Stealer Operation
When Trusted Websites Turn Malicious: WordPress Compromises Advance Global Stealer Operation
14.03.2026 19:54
👍 0
🔁 0
💬 0
📌 0
kerlab: kerberos in rust for fun and profit
kerlab: kerberos in rust for fun and profit
14.03.2026 19:24
👍 0
🔁 0
💬 0
📌 0
AppsFlyer SDK compromised 2026-03-10
AppsFlyer SDK compromised 2026-03-10
14.03.2026 19:24
👍 0
🔁 0
💬 0
📌 0
DRILLAPP: new backdoor targeting Ukrainian entities with possible links to Laundry Bear
DRILLAPP: new backdoor targeting Ukrainian entities with possible links to Laundry Bear
14.03.2026 17:24
👍 0
🔁 0
💬 0
📌 0
China-nexus Group Targets Persian Gulf Region
China-nexus Group Targets Persian Gulf Region
14.03.2026 17:24
👍 0
🔁 0
💬 0
📌 0
The Return of PhantomRaven: Detecting Three New Waves of npm Supply Chain Attacks
The Return of PhantomRaven: Detecting Three New Waves of npm Supply Chain Attacks
14.03.2026 15:09
👍 0
🔁 0
💬 0
📌 0
How Threat Actors Abuse Remote Management Software for Initial Access
How Threat Actors Abuse Remote Management Software for Initial Access
14.03.2026 12:24
👍 0
🔁 0
💬 0
📌 0
Kyiv says cyber ops inflicted $220 mln losses on Russia
Kyiv says cyber ops inflicted $220 mln losses on Russia
14.03.2026 11:54
👍 0
🔁 0
💬 0
📌 0
Poland says foiled cyberattack on nuclear centre may have come from Iran
Poland says foiled cyberattack on nuclear centre may have come from Iran
14.03.2026 10:39
👍 1
🔁 0
💬 0
📌 0
CVE-2026-28292: simple-git Remote Code Execution - A case-sensitivity bug in simple-git (12.4 million+ weekly npm downloads) allows an attacker to bypass two prior CVE fixes (CVE-2022-25860 and CVE-2022-25912)
CVE-2026-28292: simple-git Remote Code Execution - A case-sensitivity bug in simple-git (12.4 million+ weekly npm downloads) allows an attacker to bypass two prior CVE fixes (CVE-2022-25860 and CVE-2022-25912)
13.03.2026 19:09
👍 0
🔁 0
💬 0
📌 0
Joint Advisory: Middle East Conflict and Critical Infrastructure
Joint Advisory: Middle East Conflict and Critical Infrastructure
13.03.2026 18:54
👍 0
🔁 0
💬 0
📌 0
Europol and international partners disrupt ‘SocksEscort’ proxy service – Joint operation targeted malicious proxy service exploiting residential routers worldwide
Europol and international partners disrupt ‘SocksEscort’ proxy service – Joint operation targeted malicious proxy service exploiting residential routers worldwide
13.03.2026 17:24
👍 0
🔁 0
💬 0
📌 0
Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft
Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft
13.03.2026 17:24
👍 0
🔁 0
💬 0
📌 0
Feds say another DigitalMint negotiator ran ransomware attacks and helped extort $75 million
Feds say another DigitalMint negotiator ran ransomware attacks and helped extort $75 million
13.03.2026 17:09
👍 0
🔁 0
💬 0
📌 0
Detection Pipeline Maturity Model
Detection Pipeline Maturity Model
13.03.2026 15:09
👍 0
🔁 0
💬 0
📌 0
zombie-zip: Malformed ZIP archive that evades antivirus detection by declaring Method=0 (stored) while containing DEFLATE-compressed payload.
zombie-zip: Malformed ZIP archive that evades antivirus detection by declaring Method=0 (stored) while containing DEFLATE-compressed payload.
13.03.2026 09:54
👍 0
🔁 0
💬 0
📌 0
Windows Defender ACL Blocking: A Silent Technique With Serious Impact
Windows Defender ACL Blocking: A Silent Technique With Serious Impact
13.03.2026 09:54
👍 0
🔁 0
💬 0
📌 0
LnkMeMaybe: LNK crafting and research tools
LnkMeMaybe: LNK crafting and research tools
13.03.2026 09:39
👍 0
🔁 0
💬 0
📌 0
tdo_dump: Proof-of-Concept tool to dump trusted domain objects
tdo_dump: Proof-of-Concept tool to dump trusted domain objects
13.03.2026 09:24
👍 0
🔁 0
💬 0
📌 0
Insights: Increased Risk of Wiper Attacks
Insights: Increased Risk of Wiper Attacks
13.03.2026 08:24
👍 0
🔁 0
💬 0
📌 0
IronPE: IronPE is a Windows PE manual loader written in Rust for both x86 and x64 PE files.
IronPE: IronPE is a Windows PE manual loader written in Rust for both x86 and x64 PE files.
13.03.2026 08:24
👍 0
🔁 0
💬 0
📌 0
Malware and cryptography 44 - encrypt/decrypt payload via Discrete Fourier Transform. Simple C example.
Malware and cryptography 44 - encrypt/decrypt payload via Discrete Fourier Transform. Simple C example.
13.03.2026 06:09
👍 0
🔁 1
💬 0
📌 0
When Proxies Become the Attack Vectors in Web Architectures
When Proxies Become the Attack Vectors in Web Architectures
12.03.2026 15:54
👍 0
🔁 0
💬 0
📌 0
HellsUchecker: ClickFix to blockchain-backed backdoor
HellsUchecker: ClickFix to blockchain-backed backdoor
12.03.2026 11:54
👍 0
🔁 0
💬 0
📌 0
New RCtea botnet
New RCtea botnet
12.03.2026 11:54
👍 0
🔁 0
💬 0
📌 0
The gang using OpenClaw was captured for the first time
The gang using OpenClaw was captured for the first time
12.03.2026 11:39
👍 0
🔁 0
💬 0
📌 0
Silence of the hops: The KadNap botnet
Silence of the hops: The KadNap botnet
12.03.2026 11:24
👍 0
🔁 0
💬 0
📌 0
Stryker Corporation - 8k filing - suspected Iranian linked - "a cybersecurity incident affecting certain information technology systems of the Company that has resulted in a global disruption"
Stryker Corporation - 8k filing - suspected Iranian linked - "a cybersecurity incident affecting certain information technology systems of the Company that has resulted in a global disruption"
12.03.2026 09:09
👍 0
🔁 0
💬 0
📌 0
