widely

Frequently Asked Questions About the Axios npm Supply Chain Attack by North Korea-Nexus Threat Actor UNC1069

Frequently Asked Questions About the Axios npm Supply Chain Attack by North Korea-Nexus Threat Actor UNC1069

AndyC 2 April 2026

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access trojan to...

Read More

Compromised litellm PyPI Package Delivers Multi-Stage Credential Stealer

Compromised litellm PyPI Package Delivers Multi-Stage Credential Stealer

AndyC 25 March 2026

This morning, the widely used Python package litellm, a popular abstraction layer for interacting with large language models (LLMs),...

Read More

NSFOCUS Threat Intelligence: Building an OpenClaw Defense System with Multiple-Layer Protection

NSFOCUS Threat Intelligence: Building an OpenClaw Defense System with Multiple-Layer Protection

AndyC 24 March 2026

In 2026, AI agents are being widely used. OpenClaw has become a high-frequency efficiency improvement tool for enterprises and...

Read More

Security Flaw in WordPress Plugin Puts 400,000 Websites at Risk

Security Flaw in WordPress Plugin Puts 400,000 Websites at Risk

AndyC 13 March 2026

Image: Adobe A vulnerability in a widely used WordPress accessibility plugin could allow attackers to steal sensitive data from affected...

Read More

NSFOCUS Threat Intelligence: Building an OpenClaw Defense System with Multiple-Layer Protection

Significant Ransomware & Firewall Misconfiguration Breach

AndyC 5 February 2026

When “Secure by Design” Fails at the Edge Firewalls are still widely treated as the first and final line of...

Read More

Hugging Face Repositories Abused in New Android Malware Campaign

Hugging Face Repositories Abused in New Android Malware Campaign

AndyC 3 February 2026

Image: Screenshot via Hugging Face Homepage Hugging Face is widely used by researchers and developers to host machine learning models,...

Read More

The calm before the ransom: What you see is not all there is

The calm before the ransom: What you see is not all there is

AndyC 1 May 2026

Ransomware A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability Tomáš Foltýn 24 Apr 2026 • ,...

Read More

The calm before the ransom: What you see is not all there is

The calm before the ransom: What you see is not all there is

AndyC 1 May 2026

Ransomware A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability Tomáš Foltýn 24 Apr 2026 • ,...

Read More

GopherWhisper: A burrow full of malware

GopherWhisper: A burrow full of malware

AndyC 1 May 2026

ESET Research ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions Eric Howard 23 Apr 2026...

Read More

GopherWhisper: A burrow full of malware

GopherWhisper: A burrow full of malware

AndyC 1 May 2026

ESET Research ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions Eric Howard 23 Apr 2026...

Read More

New NGate variant hides in a trojanized NFC payment app

New NGate variant hides in a trojanized NFC payment app

AndyC 1 May 2026

ESET Research has discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged...

Read More

New NGate variant hides in a trojanized NFC payment app

New NGate variant hides in a trojanized NFC payment app

AndyC 1 May 2026

ESET Research has discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged...

Read More

Smashing Security podcast #465: This developer wanted to cheat at Roblox. It cost millions

Smashing Security podcast #465: This developer wanted to cheat at Roblox. It cost millions

AndyC 6 May 2026

Smashing Security podcast #465: This developer wanted to cheat at Roblox. It cost millions

Smashing Security podcast #465: This developer wanted to cheat at Roblox. It cost millions

AndyC 6 May 2026

Smashing Security podcast #465: This developer wanted to cheat at Roblox. It cost millions

Smashing Security podcast #465: This developer wanted to cheat at Roblox. It cost millions

AndyC 6 May 2026

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

AndyC 6 May 2026

Supporting the National Cyber Strategy: How TrendAI™ Helps

Supporting the National Cyber Strategy: How TrendAI™ Helps

AndyC 6 May 2026