Cybersecurity News

More
Bright orange flower in foreground with Golden Gate Bridge and San Francisco skyline.

GlassWorm Malware Exploits VS Code Extensions in Significant Supply Chain Attack

CyberSecureFox 🦊

Koi Security has documented a significant software supply chain attack in the Visual Studio Code …

Man monitors screen displaying malware alert in a tech workspace.

Malicious npm package “https-proxy-utils” delivers AdaptixC2 and underscores open-source supply chain exposure

CyberSecureFox 🦊

Security researchers at Kaspersky identified a malicious npm package, https-proxy-utils, masquerading as a proxy utility …

Abandoned library with "БИБЛИОТЕКА" sign, surrounded by overgrown vegetation.

TARmageddon (CVE-2025-62518): Critical Rust tar parsing flaw enables RCE in tokio‑tar and forks

CyberSecureFox 🦊

Security researchers at Edera have disclosed a critical logic flaw in the abandoned Rust library …

SQL Server cabinet contrasted with shadowy figures hacking into it.

PassiveNeuron zeros in on Windows Server: new APT wave leverages SQL abuse, Cobalt Strike, and custom implants

CyberSecureFox 🦊

A newly observed campaign by the PassiveNeuron threat actor underscores a strategic pivot toward server-side …