Kali Linux 2026.1 arrives with BackTrack mode, 8 new tools, and NetHunter upgrades
Kali Linux 2026.1 is now available as the first Kali release of 2026, bringing a refreshed theme, a new BackTrack-inspired desktop mode, eight newly added…
Trivy supply chain attack turns Aqua Security scanner into a secret stealer
A supply chain attack against Aqua Security’s widely used Trivy scanner let attackers push malicious code into parts of the Trivy ecosystem and steal secrets…
HackerOne says employee data was stolen after breach at benefits provider Navia
HackerOne says data belonging to 287 employees was exposed after a cyberattack on Navia Benefit Solutions, one of its U.S. benefits administrators. The company says…
Dell Wyse Management Suite flaws can be chained into full server compromise
A newly detailed attack chain shows how multiple logic flaws in Dell Wyse Management Suite On-Premises can be combined into full server compromise. Researchers say…
Tycoon2FA operators resume cloud account phishing after infrastructure disruption
Tycoon2FA is already back in action after the March 4 takedown. CrowdStrike says the phishing-as-a-service platform resumed cloud account phishing within days of the Europol-led…
CanisterWorm turns destructive as TeamPCP deploys Iran-focused Kubernetes wiper
TeamPCP has taken a more aggressive step in its cloud attacks. Researchers say the group now uses a destructive payload that wipes systems when it…
Threat actors keep hitting exposed MS-SQL servers to deploy ICE Cloud scanner
Threat actors are still targeting exposed Microsoft SQL Server systems with weak credentials, and the latest payload is a scanner called ICE Cloud Client. According…
Sandworm-linked hackers reportedly pivot to stealthy RDP persistence in new Ukraine-focused campaign
A new report claims a Sandworm-linked campaign is using fake Microsoft Office ISO files to compromise targets in Ukraine, then planting tools that keep Remote…
Microsoft says Azure AI Foundry scans high-visibility AI models for malware, backdoors, and tampering
Microsoft has outlined how it secures generative AI models hosted on Azure AI Foundry, saying high-visibility models go through security scanning before release and run…
Google rolls out Gemini-powered dark web monitoring to spot leaks, brokered access, and insider threats
Google has started rolling out a new Gemini-powered dark web intelligence capability inside Google Threat Intelligence, and the goal is straightforward. It aims to help…
November 21, 2025
1 comment 
