News

Attack on axios software developer tool threatens widespread compromises

Bys s March 31, 2026

Tim Starks and Derek B. Johnson report: A hacker briefly delivered malware this week through a popular open-source project for software developers that has an estimated 100 million weekly downloads, raising the possibility of compromises spreading widely through a supply-chain attack. Axios is a JavaScript client library used in web requests. The unknown attacker hijacked…

Source

News

China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes
Bys s January 10, 2026

A China-nexus threat actor known as UAT-7290 has been attributed to espionage-focused intrusions against entities in South Asia and Southeastern Europe. The activity cluster, which has been active since at least 2022, primarily focuses on extensive technical reconnaissance of target organizations before initiating attacks, ultimately leading to the deployment of malware families such as RushDrop

Read More China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes
News

Traditional Security Frameworks Leave Organizations Exposed to AI-Specific Attack Vectors
Bys s December 29, 2025

In December 2024, the popular Ultralytics AI library was compromised, installing malicious code that hijacked system resources for cryptocurrency mining. In August 2025, malicious Nx packages leaked 2,349 GitHub, cloud, and AI credentials. Throughout 2024, ChatGPT vulnerabilities allowed unauthorized extraction of user data from AI memory. The result: 23.77 million secrets were leaked through AI

Read More Traditional Security Frameworks Leave Organizations Exposed to AI-Specific Attack Vectors
News

Threat Intelligence Executive Report – Volume 2025, Number 5
Bys s October 17, 2025

This issue of the Counter Threat Unit’s high-level bimonthly report discusses noteworthy updates in the threat landscape during July and August

Read More Threat Intelligence Executive Report – Volume 2025, Number 5
News

Researchers claim ‘largest leak ever’ after uncovering WhatsApp enumeration flaw
Bys s November 20, 2025

Connor Jones reports: Researchers in Austria used a flaw in WhatsApp to gather the personal data of more than 3.5 billion users in what they believe amounts to the “largest data leak in history.” The messaging platform allows users to look up others’ details by inputting their phone numbers. The feature, which has been part……

Read More Researchers claim ‘largest leak ever’ after uncovering WhatsApp enumeration flaw
News

3.7 Million Telehealth Patients Allegedly Affected By Two Recent Breaches
Bys s March 23, 2026

He hasn’t attracted much attention or media coverage yet, and he doesn’t have any leak site or Telegram account. However, those reporting breaches involving patient data should note a threat actor known as “Stuckin2019” (or simply “Stuck”). Two of his recent attacks allegedly affected telehealth entities and 3.7 million patients. OpenLoop Health On January 7,……

Read More 3.7 Million Telehealth Patients Allegedly Affected By Two Recent Breaches
News

The State of Ransomware in Education 2025
Bys s September 10, 2025

441 IT and cybersecurity share their ransomware experiences, revealing the realities facing lower and higher education providers today.

Read More The State of Ransomware in Education 2025

Similar Posts