A new backdoor called Mistic is being used in financially motivated intrusions against corporate networks, with evidence pointing to a possible link to the Woodgnat…
Anthropic has accused Alibaba of running a large unauthorized campaign to extract capabilities from Claude, calling it the largest known distillation attack against its platform.…
Google has released a Chrome 149 security update for Windows, macOS, and Linux, fixing 18 browser vulnerabilities that include four Critical-rated flaws. The latest Chrome…
A new malware campaign called StrikeShark is using fake Cisco AnyConnect and Google Update installers to deliver SharkLoader, a previously undocumented loader that deploys Cobalt…
Security researchers have found new malicious skills in the OpenClaw AI agent ecosystem, showing how third-party agent extensions can become a serious software supply chain…
A newly analyzed Chrome malware campaign used a rogue browser extension and a Native Messaging Host to turn infected Windows systems into remote-command backdoors. The…
ANY.RUN has introduced in-browser data inspection for URL analysis, giving security analysts a browser-level view of how phishing pages behave after a suspicious link is…
Dropping Elephant is using a malicious Windows shortcut, DLL side-loading, and a scheduled task named GoogleErrorReport to keep a new memory-resident remote access trojan active…
CISA has added three critical Ubiquiti UniFi OS vulnerabilities to its Known Exploited Vulnerabilities catalog, warning federal agencies to act by June 26, 2026. The…
Cisco has patched a critical vulnerability in Cisco Unified Communications Manager and Unified Communications Manager Session Management Edition that can let a remote, unauthenticated attacker…
February 10, 2026
1 comment 
