Seven Malicious Vite npm Packages Use Blockchain C2 to Deliver a RAT

17/07/2026 0 Comments 0 tags

Cybersecurity researchers have discovered a cluster of seven malicious npm packages targeting the Vite frontend tooling ecosystem as part of a software supply chain attack. The malicious package campaign, codenamed

GoldenEyeDog Subgroup Linked to DigiCert Breach and Code-Signing Certificate Theft

17/07/2026 0 Comments 0 tags

Cybersecurity researchers have attributed the April 2026 DigiCert security incident to a threat activity cluster dubbed CylindricalCanine. Expel, which shared technical details of the event, described the threat actor as

New NadMesh Botnet Hunts Exposed AI Services for Cloud Keys and Kubernetes Tokens

17/07/2026 0 Comments 0 tags

A Go botnet called NadMesh turned up in early July hunting exposed AI services, and the operator’s own dashboard claims 3,811 unique AWS keys. A Shodan harvester keeps the scan

Fake Coding Tests Deliver OtterCookie-Aligned Malware Hidden in SVG Flag Images

17/07/2026 0 Comments 0 tags

North Korean threat actors linked to the Contagious Interview campaign have been observed employing steganography in SVG image files to conceal malicious payloads as part of a campaign using fake

Armenia Detains Russian Tourist on U.S. Warrant for REvil Hacker, Lawyers Say Wrong Man

17/07/2026 0 Comments 0 tags

Armenia has held a Russian tourist named Aleksandr Ermakov in a detention center since June 28, on a U.S. extradition request for a REvil ransomware suspect named Aleksandr Ermakov. His

The Race to Field Military Autonomy Is On, Can Trusted Information Infrastructure Keep Pace?

17/07/2026 0 Comments 0 tags

Military forces are under increasing pressure to field autonomous capabilities faster than ever before. Across the U.S., UK, and NATO, new investment, evolving defense strategies, and accelerated acquisition pathways are

E.U. Orders Google to Open Android Mic, Camera and Screen to Rival AI Assistants

17/07/2026 0 Comments 0 tags

The European Commission on Thursday ordered Google to give rival AI assistants the same reach into Android that Gemini already has: the camera, the microphone, whatever is on screen, a

New GoSerpent Malware Targets Southeast Asian Governments and Diplomats for Espionage

17/07/2026 0 Comments 0 tags

Cybersecurity researchers have discovered a previously undocumented malware called GoSerpent that has been put to use in cyber attacks targeting entities in Southeast Asia since late 2025 with a focus

ACR Stealer Uses ClickFix Lures to Steal Browser Tokens and Microsoft 365 Files

17/07/2026 0 Comments 0 tags

ACR Stealer, an infostealer in circulation since 2024, is walking out of enterprise networks with saved browser passwords, live session tokens, PDFs, Microsoft 365 documents, and files from synced OneDrive

CISA Adds Exploited SharePoint RCE Zero-Day CVE-2026-58644 to KEV

17/07/2026 0 Comments 0 tags

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a newly patched security flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian