Researchers at Push Security have identified a new campaign by threat actors that delivers infostealer malware through legitimate domains, tagged "LLMShare." Basically, "LLMShare" works by abusing the share features of popular LLM…
…through the Windows Hardware Compatibility Program (WHCP) in a bid to further secure the Windows kernel. The company is targeting kernel drivers signed by the long-deprecated cross-signed root program. Although…
…The Pokemon Center website is constantly getting updated with new apparel and products, and they tend to be a bit easier to secure. The Target collection also lacked Pokemon 's many different…
…TeamPCP deploys Iran-targeted wiper in Kubernetes attacks TeamPCP hackers advertise Mistral AI code repos for sale OpenAI confirms security breach in TanStack supply chain attack SAP fixes critical vulnerabilities in Commerce…
US says troops were targeted with location data, as senator warns ad industry is a ‘national security threat’
EDIT: As now, May 1st at 14:44 CET, about 23h into the attack, it seems to be resolved. EDIT2: 4h later, the attackers resumed and everything is down again EDIT3: It seems about 27h later to be somewhat resolved again, h…
As a maintainer, this is Cilium's take on how we secure our Github Actions in the OSS project. A few highlights: SHA pinning every GitHub Action Separating trusted vs untrusted code paths in pull_request_target Isolating…
A lot of “software supply chain security” discussions stay pretty abstract, this is Cilium's take on how we secure our Github Actions in the OSS project. A few highlights: SHA pinning every GitHub Action Separating trust…
Overview: On May 24, 2026, the data breach notification service Have I Been Pwned (HIBP) integrated a dataset originating from an April 2026 extortion campaign targeting 7-Eleven. The breach, attributed to the threat act…
…Ransomware Shield Folders often targeted by ransomware get an extra layer of protection in Avast Premium Security, which bars untrusted apps from making changes (or even outright deletions) to files in those…
…Cybercriminals no longer only target data; they look to disrupt processes, availability and operational continuity, bringing entire supply chains to their knees. To combat this, SMEs must adopt security strategies which strengthen…
On March 19, 2026, threat actors compromised Aqua Security's CI/CD pipeline and used stolen credentials to push backdoored versions of the aquasec/trivy vulnerability scanner to Docker Hub. A…
…targeting hardened servers directly. Over recent years, cybercriminal groups have increasingly focused on developer tooling ecosystems because they often provide indirect access into enterprise environments with fewer immediate security barriers. Security researchers…
…local nearby = get_enemies(ally.position, 10) ]] set_target(ally, enemy) --[[ Set an ally's attack target. Parameters: ally (entity): The ally to command enemy (entity): The enemy to target Example: set…
…A major cybercrime group (which the Threat Intelligence team claims is widely known, but did not name) allegedly targeted a popular open‑source web‑based system administration tool to gain initial access…
