This week’s ThreatsDay Bulletin covers spyware-laced game cheats, fake installers, infostealer, ransomware, phishing kits, ...
One of the Russian government’s most elite hacking groups has adopted an attack, known as Clickfix, to compromise devices belonging to sensitive organizations in Ukraine, the latter country’s CERT ...
Agent observability, aka AgentOps, has emerged as a vital ecosystem of tools for keeping an eye on what AI agents and LLMs ...
A financially motivated Russian threat actor tracked as UAT-11795 is using trojanized software to steal credentials and ...
Former Rep. Anthony Weiner is starting to plan a political comeback, filing paperwork with the city’s Campaign Finance Board to run for a City Council seat on Manhattan’s Lower East Side. Weiner went ...
The global Java development ecosystem experienced significant structural changes this week following the introduction of a new OpenJDK enhancement draft alongside warnings from cybersecurity ...
a laptop screen with a webpage of the IT Army of Ukraine group of volunteer hackers. The IT Army of Ukraine first set up in the wake of Russia's devastating attack, and has since hugely grown in ...
Sysdig says JADEPUFFER may be the first agentic ransomware case, exposing how AI agents can turn old credential failures into database destruction. JADEPUFFER is a warning about exposed AI ...
Nothing broke, so I never looked.
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.