Drift lost $285M on April 1, 2026 after nonce-based social engineering enabled admin takeover, exposing DPRK-linked crypto theft patterns.

"The C2 hosts a web-based graphical user interface (GUI) titled 'NEXUS Listener' that can be used to view stolen information ...

The U.S. State Department has officially launched the Bureau of Emerging Threats, a new unit tasked with protecting U.S.

In December 2025, TechCrunch reported that SIO was behind a set of malicious Android apps that masqueraded as WhatsApp and ...

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...

REF1695 spreads RATs and miners since Nov 2023 via ISO lures, earning 27.88 XMR across four wallets through cryptomining and ...

Cisco patches two 9.8 CVSS flaws (CVE-2026-20093, CVE-2026-20160), preventing authentication bypass and root access.

AI extensions after DeepSeek block at U.S. law firm, routing traffic to China servers, exposing compliance risk.

The activity begins with the attackers distributing malicious VBS files via WhatsApp messages that, when executed, create ...

Augmented Marauder targets Latin America and Europe since 2020, using dynamic PDF phishing to spread Casbaneiro via Horabot.

AI weaponizes the kill chain across hours or days, forcing continuous exposure and agentic defense to reduce exploitation ...

Apple expanded iOS 18.7.7 on April 1, 2026 after DarkSword disclosure, enabling auto security updates across more devices.