• admin
• API
• Asia
• abril 22, 2026
• 0 Comentarios

Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API

Ravie LakshmananApr 22, 2026Cyber Espionage / Malware The threat actor known as Harvester has been attributed to a new Linux version of its GoGra backdoor deployed as part of attacks…

Continue reading

• admin
• CrossApp
• Permissions
• abril 22, 2026
• 0 Comentarios

When Cross-App Permissions Stack into Risk

On January 31, 2026, researchers disclosed that Moltbook, a social network built for AI agents, had left its database wide open, exposing 35,000 email addresses and 1.5 million agent API…

Continue reading

• admin
• Attack
• Destructive
• abril 22, 2026
• 0 Comentarios

Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack

Ravie LakshmananApr 22, 2026Malware / Critical Infrastructure Cybersecurity researchers have discovered a previously undocumented data wiper that has been used in attacks targeting Venezuela at the end of last year…

Continue reading

• admin
• ASP.NET
• Bug
• abril 22, 2026
• 0 Comentarios

Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug

Ravie LakshmananApr 22, 2026Vulnerability / Cryptography Microsoft has released out-of-band updates to address a security vulnerability in ASP.NET Core that could allow an attacker to escalate privileges. The vulnerability, tracked…

Continue reading

• admin
• Code
• Cohere
• abril 22, 2026
• 0 Comentarios

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

Ravie LakshmananApr 22, 2026Vulnerability / Container Security A critical security vulnerability has been disclosed in a Python-based sandbox called Terrarium that could result in arbitrary code execution. The vulnerability, tracked…

Continue reading

• admin
• Banks
• Circles
• abril 22, 2026
• 0 Comentarios

Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles

Ravie LakshmananApr 22, 2026Cyber Espionage / Malware Cybersecurity researchers have discovered a new variant of a known malware called LOTUSLITE that’s distributed via a theme related to India’s banking sector.…

Continue reading

• admin
• Gentlemen
• Operation
• abril 21, 2026
• 0 Comentarios

SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation

Threat actors associated with The Gentlemen ransomware‑as‑a‑service (RaaS) operation have been observed attempting to deploy a known proxy malware called SystemBC. According to new research published by Check Point, the…

Continue reading

• admin
• Antigravity
• Code
• abril 21, 2026
• 0 Comentarios

Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution

Ravie LakshmananApr 21, 2026Vulnerability / Artificial Intelligence Cybersecurity researchers have discovered a vulnerability in Google’s agentic integrated development environment (IDE), Antigravity, that could be exploited to achieve code execution. The…

Continue reading

• admin
• BRIDGEBREAK
• Converters
• abril 21, 2026
• 0 Comentarios

22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters

Ravie LakshmananApr 21, 2026Network Security / Vulnerability Cybersecurity researchers have identified 22 new vulnerabilities in popular models of serial-to-IP converters from Lantronix and Silex that could be exploited to hijack…

Continue reading

• admin
• Aiding
• Attacks
• abril 21, 2026
• 0 Comentarios

Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023

Ravie LakshmananApr 21, 2026Insider Threat / Cybercrime A third individual who was employed as a ransomware negotiator has pleaded guilty to conducting ransomware attacks against U.S. companies in 2023. Angelo…

Continue reading