GhostPoster Browser Malware Hid for 5 Years With 840,000 Installs
Researchers uncover a 5-year malware campaign using browser extensions on Chrome, Firefox and Edge, relying on hidden payloads and shared infrastructure.
Trump “Precision Cyber” Meant 150 Planes Bombing Venezuelan Infrastructure to Rubble
As a long time advocate and practitioner of active defense cyber attacks, I call bullshit on Venezuela operations. 150 aircraft. City-wide blackout. Substations reduced to rubble. Over 40 dead. All this just to arrest two people at a known location, af…
Trump’s CSAM Problem: From Epstein to Elon Musk
The Trump administration is actively suppressing evidence of their connections to child trafficking, while issuing a travel-ban on the EU official who tried to enforce laws against child sexual abuse material. Now Trump is in the news for protecting a …
Meta Treats Staff Like Shit: Flushes 1,000 People to Bury $71 Billion Metaverse Failure
Bay Area reporters are dancing around what actually just happened: Mark Zuckerberg rebranded Facebook to “Meta” in October 2021 because the Facebook name had become synonymous with election manipulation, teen mental health destruction, and …
New CastleLoader Variant Linked to 469 Infections Across Critical Sectors
ANY.RUN report reveals how the new CastleLoader malware targets US government agencies using stealthy ClickFix tricks and memory-based attacks to bypass security.
Former CISA Director Jen Easterly Will Lead RSA Conference
The longtime cybersecurity professional says she’s taking the helm of the legacy security organization at “an inflection point” for tech and the world beyond.
Hundreds of Millions of Audio Devices Need a Patch to Prevent Wireless Hacking and Tracking
Flaws in how 17 models of headphones and speakers use Google’s one-tap Fast Pair Bluetooth protocol have left devices open to eavesdroppers and stalkers.
Years-Old Vulnerable Apache Struts 2 Versions See 387K Weekly Downloads
Over 387,000 users downloaded vulnerable Apache Struts versions this week. Exclusive Sonatype research reveals a high-risk flaw found by AI. Is your system at risk?
Palo Alto Networks addressed a GlobalProtect flaw, PoC exists
Palo Alto Networks addressed a flaw impacting GlobalProtect Gateway and Portal, for which a proof-of-concept (PoC) exploit exists. Palo Alto Networks addressed a high-severity vulnerability, tracked as CVE-2026-0227 (CVSS score: 7.7), affecting GlobalProtect Gateway and Portal, for which a proof-of-concept (PoC) exploit exists. GlobalProtect is Palo Alto Networks’ VPN and secure remote-access solution. It gives users a […]
China bans U.S. and Israeli cybersecurity software over security concerns
China has told domestic firms to stop using U.S. and Israeli cybersecurity software, citing national security concerns amid rising tech tensions. Reuters reported that China has ordered domestic companies to stop using cybersecurity solutions from more than a dozen U.S. and Israeli firms, citing national security risks. Tensions remain high over China’s push in semiconductors […]