Cybersecurity researchers have identified a new malicious campaign targeting the npm and PyPI ecosystems, attributed to the North Korea-linked Lazarus Group. The campaign, codenamed ‘graphalgo’ after the first package published…
Continue readingGoogle has reported that state-backed hackers, specifically the North Korea-linked threat actor UNC2970, are leveraging its generative AI model Gemini to enhance their cyber operations. The hackers are using AI…
Continue readingThreat actors have begun exploiting a critical vulnerability in BeyondTrust’s Remote Support (RS) and Privileged Remote Access (PRA) products, as reported by watchTowr. According to Ryan Dewhurst, head of threat…
Continue readingMicrosoft has revealed a new variant of the ClickFix social engineering attack, where cybercriminals deceive users into executing commands that leverage DNS lookups to fetch malicious payloads. This tactic specifically…
Continue readingIn December 2025, npm implemented a significant authentication overhaul in response to the Sha1-Hulud incident, aiming to strengthen its supply chain against attacks. This update represents a proactive step toward…
Continue readingCybersecurity researchers have identified a malicious Google Chrome extension, CL Suite by @CLMasters (ID: jkphinfhmfkckkcnifhjiplhfoiefffl), that is actively stealing sensitive business data, emails, and browsing history. The extension is deceptively…
Continue readingA previously unknown threat actor, tracked as UAT-9921, has been identified deploying a new modular malware framework called VoidLink in campaigns targeting the technology and financial services sectors. According to…
Continue readingGoogle’s Threat Intelligence Group (GTIG) has identified coordinated cyber operations targeting the defense industrial base (DIB) sector, with state-sponsored actors, hacktivist entities, and criminal groups from China, Iran, North Korea,…
Continue readingGoogle’s Threat Intelligence Group (GTIG) has identified a previously undocumented threat actor, suspected to be affiliated with Russian intelligence services, responsible for deploying CANFAIL malware in attacks targeting Ukrainian organizations….
Continue readingThreat Intel Digest: State-Sponsored Attacks, New Malware, and Supply Chain Risks The cyber threat landscape in early 2026 remains a complex tapestry of persistent nation-state campaigns and evolving criminal tactics….
Continue reading