⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and More

06/07/2026 0 Comments 0 tags

A streaming box should not need a threat model. Neither should a username field, a demo repo, a reset flow, or a browser permission prompt. That is the irritating part

Suspected China-Nexus Hackers Use Fake Indian Tax Filing Utility to Deploy DcRAT

06/07/2026 0 Comments 0 tags

A suspected China-nexus threat activity cluster has been observed targeting Indian taxpayers, tax professionals, and corporate finance teams to deliver a remote access trojan designed to steal sensitive data from

How to Evaluate an AI SOC Platform in 2026: 6 Capabilities That Separate Leaders from Bolt-On AI solutions

06/07/2026 0 Comments 0 tags

Building a shortlist for an AI SOC evaluation can be tough. SIEM, SOAR, and pureplay AI SOC vendors are all saying the same thing. But behind the identical label sit

New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOS

06/07/2026 0 Comments 0 tags

Cybersecurity researchers have flagged a novel Java-based remote access trojan (RAT) called QuimaRAT that’s capable of targeting Windows, Linux, and macOS environments. According to LevelBlue, the cross-platform malware is advertised

New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions

06/07/2026 0 Comments 0 tags

Researchers at Shandong University have shown a fast new way to pull data off computers that are cut off from every network. The technique, called TrojPix, tweaks on-screen pixels in ways the eye

SkillCloak Lets Malicious AI Agent Skills Evade Static Scanners with Self-Extracting Packing

06/07/2026 0 Comments 0 tags

Scanners meant to catch malicious add-on “skills” for AI coding agents can be fooled by a few simple changes that leave the malware working, according to a new study from researchers at

Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages

06/07/2026 0 Comments 0 tags

Researchers found a flaw in Opera GX, the gaming-focused version of the Opera browser, that let a malicious website silently install a browser add-on and use it to lift specific data

U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case

04/07/2026 0 Comments 0 tags

A U.S. government entity paid about $1 million to keep stolen files from being leaked, according to a new case study by Rakesh Krishnan for Ransom-ISAC, built on a leaked negotiation

North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign

04/07/2026 0 Comments 0 tags

The North Korean threat actors linked to the Contagious Interview campaign have been observed publishing 108 unique packages and web browser extensions spanning npm, Packagist, Go, and Google Chrome as

Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices

03/07/2026 0 Comments 0 tags

Security firm runZero has disclosed seven vulnerabilities in FatFs, a small filesystem library that lets a device read and write the FAT and exFAT formats used on USB drives and SD cards. The