Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages
Ravie LakshmananJul 10, 2026Software Supply Chain / Malware Unknown threat actors compromised the Injective Labs SDK project's GitHub repository and...
Ravie LakshmananJul 10, 2026Software Supply Chain / Malware Unknown threat actors compromised the Injective Labs SDK project's GitHub repository and...
Ravie LakshmananJul 10, 2026Enterprise Security / Authentication A threat actor has been targeting organizations spanning multiple sectors with voice-based fake...
Cybersecurity researchers have disclosed details of a new threat actor dubbed Lurking Lizard that has been operating an end-to-end malicious...
Ravie LakshmananJul 08, 2026Malware / Network Security A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware...
A suspected China-aligned threat activity cluster has been observed exploiting Roundcube webmail software belonging to physics and engineering departments of...
A streaming box should not need a threat model. Neither should a username field, a demo repo, a reset flow,...
A suspected China-nexus threat activity cluster has been observed targeting Indian taxpayers, tax professionals, and corporate finance teams to deliver...
The North Korean threat actors linked to the Contagious Interview campaign have been observed publishing 108 unique packages and web...
Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages that masquerade...
A previously undocumented threat actor known as Armored Likho has been attributed to cyber attacks targeting government agencies and the...
Threat actors associated with the Anubis ransomware operation have been observed exploiting the Citrix Bleed 2 (CVE-2025-5777) vulnerability to obtain...
Ravie LakshmananJul 02, 2026API Security / Cyberespionage The threat actor known as ToddyCat has been attributed to a new malware...
Ravie LakshmananJul 02, 2026Vulnerability / Threat Intelligence The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity...
Counter Threat Unit™ (CTU) researchers investigated two interconnected threat groups known as Vect and TeamPCP. The two groups announced a...
Ravie LakshmananJul 01, 2026Malware / SEO Poisoning Unknown threat actors are leveraging the ScreenConnect remote access tool as a way...