Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
LangChain and LangGraph Vulnerabilities Expose LLM Applications to Sensitive Data Leaks
Security researchers have disclosed three vulnerabilities in the popular AI development frameworks LangChain and LangGraph that can lead to leakage ...
Axios npm Supply Chain Attack Installs Cross-Platform RAT via Malicious Dependency
The widely used JavaScript HTTP client Axios has been at the center of a significant npm supply chain attack, in ...
Red Menshen’s BPFdoor: Stealth Cyber Espionage Against Global Telecom Operators
Major telecommunications providers around the world are facing a long-running and highly covert cyber‑espionage campaign attributed to the China‑linked threat ...
AI Agents in SaaS: Why the Cyber Kill Chain Fails and What OpenClaw Exposed
In September 2025, Anthropic publicly disclosed a cyber‑espionage campaign in which a state‑sponsored threat actor used an AI agent to ...
Massive Microsoft 365 Device Code Phishing Campaign Targets Global Organizations with EvilTokens PhaaS
An extensive Microsoft 365 phishing campaign abusing the OAuth device code flow has impacted more than 340 organizations across the ...
Critical Vertex AI Security Gap: Over‑Privileged Service Accounts Put AI Agents and Cloud Data at Risk
Palo Alto Networks’ Unit 42 has disclosed a critical security blind spot in Google Cloud Vertex AI that could allow ...
Google Ads Malvertising Campaign Uses Huawei Driver in BYOVD Attack to Kill EDR
A large-scale malvertising campaign active since January 2026 is abusing Google Ads to target US users searching for tax forms ...
Malicious npm Packages theGhost: New Node.js Supply Chain Attacks Target Crypto Wallets and Developer Credentials
A new wave of malicious npm packages is targeting the Node.js ecosystem, focusing on the theft of cryptocurrency wallets and ...
Google Gemini Launches AI-Powered Dark Web Threat Intelligence and SOC Agents
Google is expanding its Threat Intelligence ecosystem with a new Gemini-based dark web monitoring service designed to automatically scan underground ...
Tycoon2FA Phishing Platform Rapidly Recovers After Europol Takedown and Resumes MFA‑Bypassing Attacks
The phishing-as-a-service platform Tycoon2FA, which Europol publicly claimed to have disrupted in early March, has almost fully restored its operations. ...
