Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
Why Mozilla Warns UK VPN Restrictions Threaten Online Privacy
Mozilla has submitted an official appeal to the Ministry of Science, Innovation and Technology of the United Kingdom (DSIT), in ...
How Trapdoor Turned Android Utility Apps into a Massive Ad Fraud
The HUMAN Satori Threat Intelligence team has uncovered a large-scale fraudulent operation named Trapdoor, targeting Android users. According to the ...
How the Nx Console VS Code Extension Was Used to Steal Dev Credentials
The popular Nx Console extension for Visual Studio Code (version 18.95.0) was compromised and used to deliver multi-stage malware that ...
TeamPCP’s Mini Shai-Hulud Campaign and the Compromise of GitHub and durabletask
GitHub is investigating unauthorized access to its internal repositories, while at the same time the TeamPCP group is continuing a ...
How EvilTokens Abuses OAuth Device Codes to Bypass MFA in Microsoft 365
The EvilTokens platform, operating under a “phishing as a service” (PhaaS) model, according to Cloud Security Alliance data, exploits the ...
Upcoming Drupal Core Security Fix for High-Severity Vulnerability
Drupal has announced a planned release of a core security update for all supported branches, scheduled for May 20, 2026, ...
How the Mini Shai-Hulud Worm Compromised AntV npm Packages
A large-scale npm supply chain attack has affected hundreds of packages in the @antv ecosystem — a popular data visualization ...
How INTERPOL’s Operation Ramz Reshapes Cybercrime Enforcement in MENA
INTERPOL has concluded an unprecedented coordinated anti-cybercrime operation in the Middle East and North Africa (MENA) region. Operation Ramz, conducted ...
Analysis of Malicious npm Packages Delivering Shai-Hulud and More
Researchers from OX Security discovered four malicious npm packages published by the same user but containing fundamentally different malicious payloads ...
Compromised GitHub Actions Steal CI/CD Credentials via Runner Memory
The popular GitHub Actions actions-cool/issues-helper and actions-cool/maintain-one-comment have been compromised through a supply-chain attack: all existing tags in the repositories ...