New North Korean AI Hiring Scheme Targets US Companies
Source: ChatGPT A suspected North Korean operative attempted to infiltrate a cybersecurity firm using a stolen identity and an AI-generated...
Month: April 2026
Axios Compromise on npm Introduces Hidden Malicious Package
A newly discovered software supply chain attack targeting the npm ecosystem briefly compromised one of the most widely used...
Synthetic data is all you need for Reinforcement Learning
Building Reinforcement Learning (RL) environments to evaluate and train agents involves simulating the world in which an agent interacts,...
When AI Writes the Code, What Changes for Security?
Last week at RSAC 2026, we hosted four security leaders for a breakfast panel to talk about what’s actually...
Attackers hijack Axios npm account to spread RAT malware
Attackers hijack Axios npm account to spread RAT malware Pierluigi Paganini March 31, 2026 Threat actors hijacked the npm account...
Nearly half a Million mobile customers of Lloyds Banking Group affected by security incident
Nearly half a Million mobile customers of Lloyds Banking Group affected by security incident Pierluigi Paganini March 31, 2026 Lloyds...
Axios Hijacked: npm Account Takeover Deploys Cross-Platform RAT to Millions
On March 31, 2026, two malicious versions of Axios – the JavaScript HTTP client with over 83 million weekly...
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks
î „Ravie Lakshmananî ‚Mar 31, 2026Zero-Day / Vulnerability A high-severity security flaw in the TrueConf client video conferencing software has been exploited...
Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts
î „Ravie Lakshmananî ‚Mar 31, 2026Cloud Security / AI Security Cybersecurity researchers have disclosed a security "blind spot" in Google Cloud's Vertex...
TrendAI™ Research at RSAC 2026: Advancing Defense Across AI‑Driven and Cyber‑Physical Threats
TrendAI™ Research at RSAC 2026: Advancing Defense Across AI‑Driven and Cyber‑Physical Threats | Trend Micro (US) Content has been added...
Google Drive Expands AI Ransomware Detection, File Recovery to More Users
Source: Google Google is handing Drive a sharper shield. The tech giant’s latest rollout equips the platform with AI-powered ransomware...
VRP 2025 Year in Review
Posted by Dirk Göhmann, Tony Mendez, and the Vulnerability Rewards Program Team2025 marked a special year in the history of...
Latest Xloader Obfuscation Methods and Network Protocol
Introduction Xloader is an information stealing malware family that evolved from Formbook and targets web browsers, email clients, and File...
BSidesSLC 2025 – Considering Cloud Coverage In SIEM/XDR Design
Author, Creator & Presenter: Chris Beckman – Principal Security Engineer at TaxBit Our thanks to BSidesSLC for publishing their...
Panera’s 5.1 Million User Breach: When ‘No Hack’ Becomes a Ransomware Business Model
On January 28, 2026, Panera Bread confirmed what cybersecurity researchers already knew: the company had experienced a "cybersecurity incident."...
