Threats

Hackers deploy sophisticated malware via open VSX extension after 5066 downloads

Threats January 30, 2026

Hackers have successfully weaponized a popular Open VSX extension, the ‘Angular Language Service,’ to distribute sophisticated malware that has infected…

Education-themed malicious domains identified as part of bulletproof hosting infrastructure.

Threats January 30, 2026

Security researchers have exposed a significant cyber threat campaign utilizing deceptive education-themed malicious domains to distribute malware and facilitate phishing…

Matanbuchus Malware Evades Antivirus by Modifying Components

Threats January 30, 2026

The cybersecurity landscape is once again facing a resurgent threat with the reappearance of the Matanbuchus malware downloader. This sophisticated…

Researchers Develop PyRAT, a Cross-Platform Remote Access Tool

Threats January 30, 2026

A new Python-based remote access trojan, dubbed PyRAT, has emerged, posing a significant threat to both Windows and Linux systems.…

VS Code extension ClawdBot Agent deploys ScreenConnect RAT.

Threats January 30, 2026

A dangerous and weaponized VS Code extension, disguised as a legitimate AI coding assistant, was recently discovered to be distributing…

Threat Actors Use Google Search Ads for ‘Mac Cleaner’ to Direct Users to Malicious Websites

Threats January 29, 2026

Cybercriminals are increasingly leveraging Google Search Ads to lure unsuspecting Mac users to malicious websites disguised as legitimate “Mac cleaner”…

Open Directory Exposed, Leaks BYOB Framework on Windows, Linux, macOS

Threats January 29, 2026

Threat researchers have uncovered an actively serving command and control (C2) server believed to be hosting a complete deployment of…

Cal.com access controls exposed millions of bookings and led to account takeover.

Threats January 29, 2026

Cal.com, a widely-used open-source scheduling platform, recently experienced a significant security vulnerability that exposed millions of user bookings and sensitive…

Google Disrupts Largest Residential Proxy Network

Threats January 29, 2026

Google, in collaboration with security partners, has disrupted one of the world’s largest residential proxy networks, IPIDEA. This operation effectively…

TA584 Actors Use ClickFix Social Engineering for Tsundere Bot Malware Deployment

Threats January 29, 2026

A sophisticated cybercriminal group known as TA584 has significantly intensified its malicious operations throughout 2025, tripling campaign volumes and introducing…

IDIS IP Camera

Threats January 29, 2026

A critical vulnerability in IDIS IP cameras, specifically within the IDIS Cloud Manager (ICM) Viewer application, has been disclosed, enabling…

Threat Actors Employ AI-Generated Malicious Job Offers to Deploy PureRAT

Threats January 29, 2026

A Vietnamese cybercrime group is leveraging artificial intelligence to craft malicious code within an ongoing phishing campaign that distributes the…

Trending

CISA adds actively exploited SolarWinds Serv-U DoS vulnerability to KEV catalog

AI Agent Discovers 21 Zero-Day Vulnerabilities in FFmpeg; Chrome Addresses 429 Bugs

Cisco Catalyst SD-WAN Manager Vulnerability Exploited, Patch Pending

Threats

Hackers deploy sophisticated malware via open VSX extension after 5066 downloads

Education-themed malicious domains identified as part of bulletproof hosting infrastructure.

Matanbuchus Malware Evades Antivirus by Modifying Components

Researchers Develop PyRAT, a Cross-Platform Remote Access Tool

VS Code extension ClawdBot Agent deploys ScreenConnect RAT.

Threat Actors Use Google Search Ads for ‘Mac Cleaner’ to Direct Users to Malicious Websites

Open Directory Exposed, Leaks BYOB Framework on Windows, Linux, macOS

Cal.com access controls exposed millions of bookings and led to account takeover.

Google Disrupts Largest Residential Proxy Network

TA584 Actors Use ClickFix Social Engineering for Tsundere Bot Malware Deployment

IDIS IP Camera

Threat Actors Employ AI-Generated Malicious Job Offers to Deploy PureRAT