GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos
Ravie LakshmananMar 16, 2026Malware / Cryptocurrency The GlassWorm malware campaign is being used to fuel an ongoing attack that leverages...
used
Face value: What it takes to fool facial recognition
ESET’s Jake Moore used smart glasses, deepfakes and face swaps to ‘hack’ widely-used facial recognition systems – and he'll demo...
Security Flaw in WordPress Plugin Puts 400,000 Websites at Risk
Image: Adobe A vulnerability in a widely used WordPress accessibility plugin could allow attackers to steal sensitive data from affected...
Hackers Pose as IT Staff in Microsoft Teams to Install Malware
Image: sapannpix/Adobe Microsoft Teams impersonation and social engineering tactics are being used in an ongoing campaign to deliver a stealthy...
Fake Gemini AI Chatbot Promotes ‘Google Coin’ in New Crypto Scam
Image: Malwarebytes A convincing chatbot pretending to be Google’s AI assistant is now being used to pitch a fake cryptocurrency...
How Chinese Hackers Reached America’s Surveillance Infrastructure
Chinese government-linked hackers have breached a network used by the Federal Bureau of Investigation to manage court-authorized surveillance operations....
Granular Policy Enforcement in Quantum Secure Discovery Services
The Evolution of sso in the Age of ai Remember when we used to have those sticky notes on...
Latest OpenClaw Security Risks are Fake GitHub Repositories Used to Deploy Infostealers
The highly popular and risk-riddled OpenClaw personal AI assistant is being used by bad actors to target users with...
Shadow AI vs Managed AI: What’s the Difference? – FireTail Blog
Quick Facts: Shadow AI vs. Managed AI Shadow AI is a visibility gap: It refers to any AI tool...
Fake Huorong security site infects users with ValleyRAT
A convincing lookalike of the popular Huorong Security antivirus has been used to deliver ValleyRAT, a sophisticated Remote Access...
What Is Zero Trust Security? A Plain-English Guide
The old security model had a name, even if no one used it: "castle and moat." You built a...
Notepad++ patches flaw used to hijack update system
Notepad++ patches flaw used to hijack update system Pierluigi Paganini February 18, 2026 Notepad++ patched a vulnerability that attackers used...
Is SSO the Same as SAML?
The Short Answer No but They Are Best Friends Ever had a meeting where someone used "SSO" and "SAML"...
CVE-2025-22225 in VMware ESXi now used in active ransomware attacks
CVE-2025-22225 in VMware ESXi now used in active ransomware attacks Pierluigi Paganini February 04, 2026 Ransomware groups now exploit VMware...
Hugging Face Repositories Abused in New Android Malware Campaign
Image: Screenshot via Hugging Face Homepage Hugging Face is widely used by researchers and developers to host machine learning models,...
