malware

BusySnake Stealer: The APT That Generates Malware With AI

Armored Likho uses LLMs to write first-stage payloads and PyArmor Pro to obfuscate them. Kaspersky's report reveals an infostealer tar…

Jul 03, 2026views - 1.6k

ransomware

Interpol Ransomware: Small Businesses Targeted via Social Engineering

Threat actors are impersonating Interpol in a ransomware campaign hitting small businesses across pharmaceutical, food, agriculture, t…

Jul 02, 2026views - 1.3k

CYBERSEC

Medtronic Begins Breach Notifications: 369,200+ Confirmed Victims vs. 9 Million Claimed by ShinyHunters

Medtronic has started notifying individuals affected by an April 2026 corporate IT breach. State regulator filings confirm over 369,20…

Jul 02, 2026views - 1.5k

malware

ToddyCat's Umbrij Malware Steals Gmail OAuth Tokens by Abusing Enterprise Browsers

The Umbrij malware automates OAuth 2.0 token theft via the Chrome DevTools Protocol, bypassing passwords and MFA on corporate Gmail ac…

Jul 02, 2026views - 1.2k

CYBERSECEXPLOIT

Cisco Confirms: Unified CM SSRF Exploited, 48-Hour Window from PoC to Attacks

Cisco confirmed on July 1, 2026, that CVE-2026-20230, an SSRF vulnerability in Unified Communications Manager, is under active in-the-…

Jul 02, 2026views - 1.3k

VULNZERO-DAY

ZDI-26-396: Reversed Operator in X.Org Server Opens Door to Arbitrary Read

An elementary coding error in X.Org Server allows out-of-bounds reads with potential escalation: the details of ZDI-26-396.

Jul 02, 2026views - 1.4k

CYBERSEC

FortiBleed, the Missing Link: From 430,000 Targeted Firewalls to INC and Lynx Ransomware

SOCRadar ties the FortiBleed credential theft campaign to the INC and Lynx ransomware groups, revealing a single operator managing bot…

Jul 02, 2026views - 1.4k

CYBERSEC

ChocoPoC RAT: How Fake PoCs on PyPI Infected Vulnerability Researchers

ChocoPoC, a Python RAT, spreads via GitHub repositories posing as proof-of-concept exploits that hide the payload in transitive PyPI d…

Jul 02, 2026views - 1.8k

CYBERSECCRITICAL

ZDI-26-377: XSS in NetVault Backup Enables Auth Bypass and SYSTEM RCE Chain

An XSS flaw in the viewclient page of Quest NetVault Backup lets a remote attacker bypass authentication and, when chained with other…

Jul 01, 2026views - 703

CYBERSEC

VEIL#DROP: How Blogger Became an Infostealer Armorer

Securonix uncovers VEIL#DROP, a multi-stage malware chain that weaponizes Google Blogger to deliver the PureLogs Stealer filelessly, b…

Jul 01, 2026views - 717

CYBERSECCRITICAL

Cursor Hit by Two Critical CVEs: RCE and Zero-Click via Sandbox Prompt Injection

Two vulnerabilities in Cursor rated CVSS 9.8 allow sandbox escape and remote code execution without user interaction. The fix is avail…

Jul 01, 2026views - 709

ransomware

AI-Generated Ransomware Attacks via Browser: No Payload, Just Chrome Permissions

Check Point analyzed a DeepSeek-generated sample that encrypts local files by abusing Chrome's File System Access API. No exploit, no…

Jul 01, 2026views - 862