News
UNC6692: How Attackers Impersonate IT Support via Microsoft Teams to Deploy SNOW Malware
A deep dive into the latest social engineering tactics where threat actors use 'email bombing' and Microsoft Teams impersonation to bypass corporate security and install the modular SNOW malware suite.
Supply Chain Alert: Bitwarden CLI Compromised via Malicious npm Package
The Bitwarden CLI has been targeted in a significant supply chain attack following the Checkmarx campaign. Attackers managed to inject malicious code into version 2026.4.0, designed to steal developer secrets, cloud credentials, and GitHub tokens.
The Fall of Grinex: Sanctioned Exchange Blames Intelligence Agencies for $13M Theft
Interesting news today in the crypto-underground. Grinex (formerly known as the sanctioned Garantex) just announced they are shutting down after a massive $13.7 million breach. They are blaming "Western Intelligence," but the on-chain data suggests some very interesting laundering techniques. Let's dive in.
3 Microsoft Defender Zero-Days Under Active Attack: BlueHammer, RedSun, and UnDefend
Microsoft Defender is facing a crisis as three zero-day exploits (BlueHammer, RedSun, UnDefend) are being weaponized in the wild. While one is patched, two remain unpatched and deadly for endpoint security.
Android 17 Privacy Update: Google Restricts Contact and Location Permissions
Google announces major shifts in Android 17 permissions, replacing broad contact access with a secure 'Contact Picker' and introducing a one-time location button to combat data harvesting.