A new cybersecurity threat has been discovered involving fake Laravel packages uploaded to the Packagist repository. These packages pretend to be useful development tools but secretly install malware on a developer’s system. Because Packagist is widely used by PHP developers through Composer, this attack can affect many projects. The malware works across Windows, macOS, and … Continued
Cybersecurity researchers have recently uncovered a cyber-espionage campaign carried out by a threat group known as Silver Dragon. Security analysts believe this group has connections to the Chinese-aligned hacking collective APT41. The campaign has mainly targeted government organizations across Europe and Southeast Asia. Reports suggest that the activity has been ongoing since mid-2024 and focuses … Continued
The University of Hawaiʻi Cancer Center has confirmed that a major data breach has affected nearly 1.2 million people. The incident was linked to a ransomware attack targeting the center’s research systems. The breach was first detected in August 2025. After a detailed review, officials confirmed the scale of the exposure. According to the university, … Continued
Amazon Web Services (AWS), the cloud computing division of Amazon, has confirmed that three of its data centres in the Middle East were damaged by drone strikes. The incident happened amid rising regional tensions and military escalation. According to the company’s official statements, two facilities in the United Arab Emirates were directly hit. A third … Continued
Cybersecurity researchers have uncovered a new supply chain attack involving 26 malicious npm packages published to the public registry. These packages were disguised as normal developer tools but secretly contained harmful code. The activity has been linked to threat actors associated with North Korea. The campaign specifically targeted developers and software environments. Researchers have named … Continued
A serious security vulnerability named “ClawJacked” has been discovered in OpenClaw, a popular self-hosted AI agent platform. Security researchers revealed that malicious websites could secretly take control of a user’s locally running OpenClaw instance. This flaw allowed attackers to hijack the AI agent and potentially steal sensitive data. The discovery has raised significant concern within … Continued
Cybersecurity researchers have uncovered a new malware campaign targeting users through fake gaming utilities. Attackers are distributing trojanized tools that secretly install a Java-based Remote Access Trojan (RAT). The activity was identified and analyzed by Microsoft’s security team. This campaign shows how gaming platforms are becoming a new distribution channel for malware. In this operation, … Continued
Marquis Software Solutions has filed a lawsuit against cybersecurity company SonicWall after a major ransomware attack. The case was filed in February 2026 in a U.S. federal court in Texas. Marquis provides software services to hundreds of banks and credit unions across the United States. The company claims SonicWall’s earlier security failure played a direct … Continued
A malicious software package pretending to be a Stripe integration library was recently discovered on the NuGet repository. The fake package was created to closely imitate Stripe’s official .NET library used for payment processing. At first glance, it looked legitimate and worked like the real tool. However, hidden inside it was code designed to steal … Continued
In a major cybercrime crackdown, U.S. authorities have seized control of a well-known ransomware forum called RAMP, short for Russian Anonymous Marketplace. The platform was widely used by ransomware gangs to advertise services, recruit partners, and trade stolen access to networks. After the operation, both its regular website and dark web domain were replaced with … Continued
