Whats The Hax?

PeopleSoft PeopleTools Pre-Authentication RCE: A PSIGW SSRF Chain That Executes Inside the JVM 14h ago Threat Actors Abuse claude.ai Shared Chat for ClickFix Malvertising Campaign 1d ago Governing Claude Enterprise in Environments Where Inline Controls Can't Go 6d ago GenAI Is Both Hunter and Hunted at Pwn2Own Berlin 2026 8d ago Old WinRAR Flaw Fuels Attacks on Ukraine: How Unmanaged Software Keeps the Door Open 10d ago Pwn2Own Berlin 2026: On the Ground With TrendAI™ ZDI's Biggest AI Showdown Yet 17d ago Smart Contracts for C&C: How ClearFake Hid in Plain Sight on BSC Testnet 23d ago Analyzing Void Dokkaebi’s Cython-Compiled InvisibleFerret Malware 27d ago Inside SHADOW-WATER-063’s Banana RAT: From Build Server to Banking Fraud 30d ago Agentic Governance: Why It Matters Now 31d ago AI agents now act inside the trust boundary with real credentials, and agentic governance is what keeps them from quietly breaking things at machine speed. Analyzing TeamPCP’s Supply Chain Attacks: Checkmarx KICS and elementary-data in CI/CD Credential Theft 36d ago Vibe Hacking: Two AI-Augmented Campaigns Target Government and Financial Sectors in Latin America 38d ago What Is the Instructure Canvas Breach? Impact, Risks, and What Institutions Should Do 39d ago Supporting the National Cyber Strategy: How TrendAI™ Helps 43d ago InstallFix and Claude Code: How Fake Install Pages Lead to Real Compromise 44d ago Quasar Linux (QLNX) – A Silent Foothold in the Supply Chain: Inside a Full-Featured Linux RAT With Rootkit, PAM Backdoor, Credential Harvesting Capabilities 45d ago Inside Shadow-Earth-053: A China-Aligned Cyberespionage Campaign Against Government and Defense Sectors in Asia 49d ago Kuse Web App Abused to Host Phishing Document 50d ago Void Dokkaebi Uses Fake Job Interview Lure to Spread Malware via Code Repositories 58d ago The Vercel Breach: OAuth Supply Chain Attack Exposes the Hidden Risk in Platform Environment Variables 59d ago

Protecting legacy OT systems against modern cyberthreats 1d ago FishMonger’s arsenal upgraded: SprySOCKS for Windows 2d ago EvilTokens: A phishing attack that doesn’t steal your password 3d ago OceanLotus: From external espionage to domestic targeting 7d ago Unpacking SMB cyber-readiness – and what makes or breaks it 8d ago Cybercriminals: the 'auditors' you never hired 9d ago Lessons for life: Why children’s data is a long-term identity risk 15d ago This month in security with Tony Anscombe – May 2026 edition 20d ago ESET APT Activity Report Q4 2025–Q1 2026 21d ago What to consider before asking an AI chatbot for health advice 22d ago BTMOB: A stealthy RAT burrowing deep into Android devices 23d ago Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise 27d ago Webworm: New burrowing techniques 29d ago The quest for greater tech independence 30d ago Why geopolitical turmoil is a gift for scammers, and how to stay safe 34d ago FrostyNeighbor: Fresh mischief and digital shenanigans 35d ago Eyes wide open: How to mitigate the security and privacy risks of smart glasses 38d ago Fake call logs, real payments: How CallPhantom tricks Android users 42d ago Fixing the password problem is as easy as 123456 42d ago A rigged game: ScarCruft compromises gaming platform in a supply-chain attack 44d ago

State Digital Surveillance Risk Landscape 1d ago Explore the state digital surveillance risk landscape. Learn how governments use spyware, AI, and network interception to monitor travelers and how to mitigate these risks. The Intelligence No One Else Has: Inside Recorded Future’s Proprietary Collection Engine 2d ago Learn how Recorded Future’s proprietary collection engine empowers organizations to move beyond reactive security. Discover the power of our four unique intelligence source types—technical, underground, community, and open-source—working to... Recorded Future Launches Impact and Metrics Dashboard 7d ago See the business value of your intelligence program in one live, continuously updated dashboard, built for the conversations that matter most with the executives who own budget and strategy. Cyber-Enabled Maritime Sanctions Evasion 7d ago Discover how Iranian and Russian shadow fleets use a vast network of fake maritime websites and fraudulent documents to evade international sanctions 2026 FIFA World Cup: What Public Safety Officials Need to Know 8d ago Prepare for the 2026 FIFA World Cup with expert analysis of the physical and cyber threat landscape. Discover key mitigation strategies for host city officials to ensure public safety China's Noncombatant Evacuation Operations: 2005–2025 8d ago Explore the Insikt Group study on 37 Chinese noncombatant evacuation operations (NEOs) from 2005–2025, revealing how China leverages SOEs and civilian resources for its overseas interests Russia’s Defense-Based Economy Risks Forcing Putin to Fight Wars 9d ago Western sanctions have tied Russia's elite patronage to the defense sector. Learn why this creates a domestic imperative for Putin to pursue perpetual war May 2026 CVE Landscape 10d ago In May 2026, Insikt Group® identified 41 high-impact vulnerabilities that should be prioritized for remediation, all of which had a Very Critical Recorded Future Risk Score. This represents a 11% increase from last month. Why Holistic Sourcing Wins: The Numbers Behind the Recorded Future Advantage 13d ago Future’s Intelligence Grap® uses holistic sourcing across 1M+ sources for complete threat intelligence and proactive defense. Threats to the 2026 FIFA World Cup 14d ago Threat assessment for the 2026 FIFA World Cup (US, Mexico, Canada) covering organized crime, AI-powered cyber fraud, state espionage, and political influence operations. Remembering Sir Alex Younger 14d ago Iran Expands Handala Brand to Physical Threats 16d ago The Vulnerability Flood Is Now a Board Conversation. Here's How to Lead It. 28d ago At Mythos Speed: A Defender's Playbook for the AI Vulnerability Surge in 2026 30d ago April 2026 CVE Landscape 34d ago NIST NVD Enrichment Policy Change: Prioritizing Vulnerabilities with Attacker Behavior Signals 35d ago Beyond Acceleration and Automation: How AI + Intelligence Changes Cyber Defense 35d ago Working in London at the World’s Largest Intelligence Company 41d ago Quantum Risk Explained 42d ago Recorded Future Named a Leader in the 2026 Gartner® Magic Quadrant™ for Cyberthreat Intelligence Technologies. And there’s more. 43d ago

Dozens of malicious wallpapers found on Steam Workshop: gamers’ accounts at risk 2d ago Since late 2025, malware has been spreading rapidly through the Steam Workshop. In most cases, we caught old, familiar threats such as DarkKomet, the Lumma and Vidar infostealers. Argamal: Malware hidden in hentai games 15d ago Kaspersky researchers analyze new Argamal RAT distributed via infected hentai games and allowing the attacker to control the target machine. Wardriving assessment across Mexico: Preparing for the 2026 World Cup 16d ago In the lead-up to the 2026 FIFA World Cup, Kaspersky GReAT experts conducted a wardriving assessment in Mexico City, Monterrey, and Guadalajara to evaluate Wi-Fi hotspot security configurations and potential exposure risks. Containers on fire: from container escapes to supply chain attacks 17d ago We break down the primary attack vectors in containerized environments: exposed secrets, privilege misconfigurations, API compromise, and supply chain attacks. What’s in the container? Analyzing vulnerabilities, risks and protection with Kaspersky Container Security and the KIRA AI assistant 20d ago What are the main risks for container environments: vulnerabilities, supply chain attacks, configuration errors; how to improve container security and how Kaspersky Container Security with the KIRA AI assistant can help. Pirates in the crosshairs: how one cybercrime gang has been infecting book, movie, and TV show fans for years 21d ago Our experts continue to track attacks targeting consumers of pirated content, both books and movies. 2026 saw the discovery of new target sites with tens of millions of visitors, while the miner based on SilentCryptoMiner gained a RAT modul... Cloud Atlas activity in the second half of 2025 and early 2026: new tools and a new payload 27d ago The experienced Cloud Atlas group remains active, continuing to target government sectors and diplomatic entities in Russia and Belarus, employing both new and established techniques. How an image could compromise your Mac: understanding an ExifTool vulnerability (CVE-2026-3102) 29d ago We explain how a flaw in ExifTool allows attackers to compromise macOS systems via a malicious image (CVE-2026-3102). IT threat evolution in Q1 2026. Mobile statistics 31d ago This report contains mobile threat statistics for Q1 2026, along with noteworthy discoveries and quarterly trends: new versions of SparkCat and Triada. IT threat evolution in Q1 2026. Non-mobile statistics 31d ago The report presents key trends and statistics on malware that targeted personal computers running Windows and macOS, as well as Internet of Things (IoT) devices, during Q1 2026.

OceanLotus: From external espionage to domestic targeting 7d ago Unpacking SMB cyber-readiness – and what makes or breaks it 8d ago Cybercriminals: the 'auditors' you never hired 9d ago Lessons for life: Why children’s data is a long-term identity risk 15d ago This month in security with Tony Anscombe – May 2026 edition 20d ago ESET APT Activity Report Q4 2025–Q1 2026 21d ago What to consider before asking an AI chatbot for health advice 22d ago BTMOB: A stealthy RAT burrowing deep into Android devices 23d ago Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise 27d ago Webworm: New burrowing techniques 29d ago The quest for greater tech independence 30d ago Why geopolitical turmoil is a gift for scammers, and how to stay safe 34d ago FrostyNeighbor: Fresh mischief and digital shenanigans 35d ago Eyes wide open: How to mitigate the security and privacy risks of smart glasses 38d ago Fake call logs, real payments: How CallPhantom tricks Android users 42d ago Fixing the password problem is as easy as 123456 42d ago A rigged game: ScarCruft compromises gaming platform in a supply-chain attack 44d ago This month in security with Tony Anscombe – April 2026 edition 49d ago The calm before the ransom: What you see is not all there is 55d ago GopherWhisper: A burrow full of malware 56d ago New NGate variant hides in a trojanized NFC payment app 58d ago What the ransom note won’t say 59d ago That data breach alert might be a trap 62d ago Supply chain dependencies: Have you checked your blind spot? 63d ago Recovery scammers hit you when you’re down: Here’s how to avoid a second strike 69d ago As breakout time accelerates, prevention-first cybersecurity takes center stage 72d ago Digital assets after death: Managing risks to your loved one’s digital estate 78d ago This month in security with Tony Anscombe – March 2026 edition 79d ago RSAC 2026 wrap-up – Week in security with Tony Anscombe 83d ago A cunning predator: How Silver Fox preys on Japanese firms this tax season 83d ago Virtual machines, virtually everywhere – and with real security gaps 85d ago Cloud workload security: Mind the gaps 86d ago Move fast and save things: A quick guide to recovering a hacked account 90d ago EDR killers explained: Beyond the drivers 91d ago Face value: What it takes to fool facial recognition 97d ago Cyber fallout from the Iran war: What to have on your radar 97d ago

Suspected North Korean actors use fake ‘coding assignments’ to steal crypto 8d ago China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africa 13d ago Proofpoint Introduces Active Exploits Protection to Help Organizations Prioritize Vulnerability Patching for Real-World Attacks in the AI Era 22d ago New solution reduces exposure to actively exploited vulnerabilities in minutes by turning intelligence into immediate protection across primary attack paths Disrupts AI-powered exploit- Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks 26d ago Proofpoint Integrates with the Claude Compliance API to Extend Data Security and Governance to Claude 27d ago New product integrations bring data protection, insider risk detection, and governance into Claude Enterprise and Claude Platform activity Organizations gain unified visibility across Proofpoint Launches Dedicated MSP Business Unit and Introduces 365 Total Protection for North America 36d ago New MSP Platform business unit, AI-powered all-in-one Microsoft 365 protection, and Marketplace partnership with Pax8 strengthen Proofpoint’s commitment to channel and small and mid-size The spy who logged me in. 39d ago ⁠Mark Kelly⁠, Staff Threat Researcher at ⁠Proofpoint⁠, is discussing their work on "I’d come running back to EU again: TA416 resumes European government espionage campaigns." China-linked threat group TA416 has resumed large-scale phishing ... Proofpoint Establishes Innovation Precedent for Source-Agnostic Modern Enterprise Investigations 43d ago Proofpoint Prism Investigator positioned as first fully autonomous Agentic AI solution to significantly streamline investigations for highly regulated and highly AI and the New Threat Landscape | Sumit Dhawan with NightDragon | RSAC 2026 43d ago The Most Powerful Women Of The Channel 2026: Power 100 44d ago The Power 100 is culled from the ranks of CRN’s 2026 Women of the Channel and spotlights the female executives at vendors and distributors whose insight and influence help drive channel success.

Student Loan Breach Exposes 2.5M Records 1387d ago 2.5 million people were affected, in a breach that could spell more trouble down the line. Watering Hole Attacks Push ScanBox Keylogger 1387d ago Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool. Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms 1388d ago Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system. Ransomware Attacks are on the Rise 1391d ago Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group. Cybercriminals Are Selling Access to Chinese Surveillance Cameras 1392d ago Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed. Twitter Whistleblower Complaint: The TL;DR Version 1393d ago Twitter is blasted for security and privacy lapses by the company’s former head of security who alleges the social media giant’s actions amount to a national security risk. Firewall Bug Under Active Attack Triggers CISA Warning 1395d ago CISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP. Fake Reservation Links Prey on Weary Travelers 1396d ago Fake travel reservations are exacting more pain from the travel weary, already dealing with the misery of canceled flights and overbooked hotels. iPhone Users Urged to Update to Patch 2 Zero-Days 1398d ago Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack. Google Patches Chrome’s Fifth Zero-Day of the Year 1399d ago An insufficient validation input flaw, one of 11 patched in an update this week, could allow for arbitrary code execution and is under active attack.