Latest News
Upwind Finds Coordinated Supply Chain Campaign Compromising Multiple AsyncAPI npm Packages
Upwind links compromised AsyncAPI npm packages to a coordinated supply chain attack spanning repositories, publishing pipelines, and developer…
Tego AI Finds Claude Tag Slack Integration Can Trigger Unauthorized Enterprise Actions
Tel Aviv, Israel, 14th July 2026, CyberNewswire
Telegram’s t.me Links Go Offline After Registry Places Domain on serverHold
Telegram's t.me links stopped resolving after the .ME registry applied serverHold. The app still works, while the reason for the domain action…
Millions of Microsoft Entra Accounts Targeted in OAuth Client ID Spoofing Campaigns
Proofpoint details how attackers spoof OAuth client IDs to probe Microsoft Entra accounts, test credentials and bypass common sign-in…
Greenhat Announces Successful Delegation at Web Summit Vancouver 2026
Vancouver, Canada, 14th July 2026, CyberNewswire
Torq and Criminal IP Partner to Deliver Decision-Ready Threat Intelligence for Autonomous SOC Operations
Torrance, California, USA, 13th July 2026, CyberNewswire
Siggen Backdoor Hits Windows Developers Via Infected Visual Studio Projects
Dr.Web details Siggen Windows backdoor that uses Steam for C2, steals credentials and crypto data and infects Visual Studio projects to spread…
Cybersecurity Negotiator Gets 70 Months for Helping BlackCat Extort Victims
Former ransomware negotiator Angelo Martino gets 70 months in prison for helping BlackCat extort US victims and misuse confidential client…
FastNetMon Launches Netomics, a Self-Hosted Routing Intelligence Platform
London, United Kingdom, 10th July 2026, CyberNewswire
Microsoft Warns of GigaWiper Backdoor Built to Destroy Windows PCs
Microsoft details GigaWiper, a destructive Windows backdoor that can wipe disks, encrypt files and give attackers remote access to compromised…
AI Gateway Connected to Amazon Bedrock Hijacked for Cryptomining
Darktrace says a LiteLLM AI gateway linked to Amazon Bedrock was compromised for cryptomining after signs of exposed SSH activity.
GhostApproval Flaws Let Top AI Coding Tools Write Outside Workspaces
Wiz found GhostApproval symlink flaws in major AI coding assistants that could hide sensitive file targets, bypass approval checks and enable…