NPM Supply Chain Attack: UNC1069 Uses Social Engineering to Compromise Axios
A highly-targeted social engineering campaign has been revealed as the cause of the supply chain compromise of…
Cookie-Controlled PHP Web Shells: A New Threat to Linux Servers
Microsoft’s latest research has shed light on a concerning trend in the realm of cybersecurity: the use…
China-Linked TA416 Targets European Governments with Sophisticated Malware and Phishing Campaigns
A China-aligned threat actor, known as TA416, has launched a targeted campaign against European government and diplomatic…
New SparkCat Malware Variant Targets iOS and Android Devices to Steal Crypto Wallet Recovery Phrases
Cybersecurity researchers have made a disturbing discovery, uncovering a new variant of the SparkCat malware lurking in…
Third-Party Risk: The Hidden Gap in Client Security Posture
The next major breach hitting your clients probably won’t originate from within their organization, but rather from…
NPM Supply Chain Attack: UNC1069 Uses Social Engineering on Axios Maintainer
A recent supply chain compromise of the Axios npm package has been attributed to a sophisticated social…
New SparkCat Malware Variant Targets iOS and Android Devices to Steal Crypto Wallets
Cybersecurity researchers have made a disturbing discovery, uncovering a new version of the SparkCat malware lurking in…
Closing the Third-Party Risk Gap: A Crucial Step in Enhancing Client Security
The next major breach hitting your clients probably won’t originate from within their own walls, but rather…
npm Supply Chain Attack: UNC1069 Uses Social Engineering on Axios Maintainer
A recent supply chain compromise of the Axios npm package has been attributed to a sophisticated social…
Hackers Breach 766 Next.js Hosts Using CVE-2025-55182: A Large-Scale Credential Harvesting Operation
A recent large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability, also known as CVE-2025-55182,…