A SHub macOS infostealer variant called Reaper impersonates Apple, Microsoft, and Google to trick users into executing malicious code, then targets browser data, password managers, and cryptocurrency …
cyberintel.kalymoon.com · 37199 articles · updated every 4 hours · grows forever
A SHub macOS infostealer variant called Reaper impersonates Apple, Microsoft, and Google to trick users into executing malicious code, then targets browser data, password managers, and cryptocurrency …
Operators of industrial sensors, edge AI controllers, and connected medical equipment now have a refreshed long-term Linux option for fleets that must stay patched for more than a decade. Canonical re…
LaunchDarkly has launched AgentControl, a new solution that gives software teams real-time control over AI agents in production. With AgentControl, teams can change how an agent behaves at runtime wit…
Selector has announced the expansion of its platform with AI-powered multi-cloud observability capabilities. The extension of Selector’s AI-driven observability approach into multi-cloud environments …
A phishing campaign is smuggling the powerful PureLogs information stealer onto targets’ Windows machines by hiding encrypted malicious payloads inside cat photos, Fortinet researchers discovered. The…
The security defect can be exploited remotely, without authentication, to execute arbitrary code and leak sensitive information. The post Unpatched ChromaDB Vulnerability Can Lead to Server Takeover a…
Attackers are increasingly abusing Microsoft’s decades-old MSHTA utility to stealthily deliver stealers, loaders, and persistent malware through phishing, fake software downloads, and LOLBIN-based att…
Understanding AI BOMs and where they fit into risk management for artificial intelligence.
Dark Reading editors reflect on two decades of dramatic change — from perimeter defense to assume-breach strategies — and warn that while AI, cloud, and COVID-19 have transformed the threat landscape,…
Drupal has issued an alert stating that it intends to release a "core security release" for all supported branches on May 20, 2026, from 5-9 p.m. UTC. "The Drupal Security Team urges you to reserve ti…
In February 2026, a phishing-as-a-service (PhaaS) platform called EvilTokens went live. Within five weeks, it had compromised more than 340 Microsoft 365 organizations across five countries. The targe…
Proof-of-concept (PoC) exploit code has now been released for a recently patched security flaw in the Linux kernel that could allow for local privilege escalation (LPE). Dubbed DirtyDecrypt (aka Dirty…
IT teams are increasingly overwhelmed by alerts from disconnected systems, forcing responders to manually coordinate investigations during network incidents. This webinar explores how automation and A…
Microsoft's total vulnerability count stayed steady in 2025, but critical flaws surged year over year. BeyondTrust breaks down why attackers are increasingly focused on privilege escalation and identi…
Convenience store chain giant 7-Eleven confirmed that its systems were breached in a cyberattack claimed by the ShinyHunters extortion group last month. [...]
Threat actors earlier today published more than 600 malicious packages to the Node Package Manager (npm) index as part of a new Shai-Hulud supply-chain campaign. [...]
Public Instagram posts provide raw material for AI phishing campaigns Help Net Security
The New Phishing Click: How OAuth Consent Bypasses MFA The Hacker News
12 cyber industry trends revealed at RSAC 2026 csoonline.com
Water utilities need hands-on cybersecurity help, not just free guidance, pilot program finds Cybersecurity Dive
Gen Digital stock (US3687361044): Shares jump 3.8% after latest move AD HOC NEWS
EURAZEO INVESTS IN NEXTRON SYSTEMS, A GERMAN CYBERSECURITY COMPANY SPECIALISED IN THREAT INTELLIGENCE AND CYBER FORENSICS marketscreener.com
Detego Global’s Unified Digital Forensics Platform is helping the City of Johannesburg’s forensic team accelerate digital evidence acquisition, mobile extraction, AI-powered analysis, and court-ready …
A vulnerability classified as critical was found in Piotnet Addons for Elementor Pro Plugin up to 7.1.70 on WordPress. This issue affects the function pafe_ajax_form_builder . Executing a manipulation…