(Image credit: Shutterstock) At ISC.AI 2026, China’s 360 Security Technology unveiled “Yitian Tulong,” two AI models for vulnerability discovery and […]
Category: Security
’27 million stolen login credentials have been recovered’: Global coordinated takedown hits SocGholish, Amadey, and StealC malware networks where it hurt
(Image credit: Shutterstock) EUROPOL’s Operation Endgame froze $47M in cryptocurrency and dismantled infrastructure for SocGholish, Amadey, and StealC malware 326 […]
Edge users beware — this malicious extension can break out of the sandbox and install ransomware
(Image credit: Tada Images / Shutterstock) Zscaler uncovered “Edgecution,” a malicious Edge extension deployed via fake Outlook update sites shared […]
Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability
An analysis of a popular Google Chrome ad block extension for YouTube has uncovered the ability to execute arbitrary JavaScript […]
ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories
It’s dumb out there again. This week has the usual smell of prod on fire and nobody wanting to admit […]
Multiple malicious OpenClaw skills found online – including two macOS infostealers
(Image credit: Fortune) Palo Alto Networks’ Unit 42 found five malicious “skills” on ClawHub, OpenClaw’s official marketplace, delivering infostealers and […]
Surviving the Mythos Era: Richard Bejtlich on the Case for NDR
Despite the abundance of telemetry at analysts’ disposal, many security operations teams struggle to answer a few basic questions during […]
New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis
Ravie LakshmananJun 25, 2026AI Security / Malware A previously undocumented Rust-based macOS implant and information stealer has been found to […]
New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns
Ravie LakshmananJun 25, 2026Initial Access Broker / Ransomware A new, stealthy backdoor named Mistic has been deployed as part of […]
Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access
Ravie LakshmananJun 25, 2026Vulnerability / Threat Intelligence An unknown threat actor exploited a recently disclosed high-severity security flaw impacting Cisco […]