Latest News

Stay informed with the latest cybersecurity news and threat intelligence.

Agentic Botnets Attack Uses HalluSquatting to Hijack AI Coding Assistants
News
4 min read

Agentic Botnets Attack Uses HalluSquatting to Hijack AI Coding Assistants

A newly disclosed attack technique, called adversarial hallucination squatting (HalluSquatting), developed by researchers at Tel Aviv University and Technion, exploits the predictable tendency of larg

CyberShield TeamRead More
Fake Chinese VPN Drops GoodPersonRAT With Keylogging, Proxying, and Telegram Theft
News
3 min read

Fake Chinese VPN Drops GoodPersonRAT With Keylogging, Proxying, and Telegram Theft

The legitimate VPN service is highly popular for its ability to bypass China’s Great Firewall. However, attackers are exploiting its reputation to deploy hidden malware. This fake installer drop

CyberShield TeamRead More
GitLab Patch Release Fixes Affecting CE and EE Installations
News
3 min read

GitLab Patch Release Fixes Affecting CE and EE Installations

GitLab released versions 19.1.2, 19.0.4, and 18.11.7 on July 8, 2026, patching eight vulnerabilities ranging from high to low severity across Community Edition (CE) and Enterprise Edition (EE). The co

CyberShield TeamRead More
Hackers Use Device Code Phishing to Replay Sessions and Register MFA for Persistence
News
3 min read

Hackers Use Device Code Phishing to Replay Sessions and Register MFA for Persistence

Threat researchers have uncovered a new data extortion group named “Helix” that bypasses traditional security perimeters without deploying a single piece of malware. Emerging from the remn

CyberShield TeamRead More
Palo Alto PAN-OS Buffer Overflow Flaws Could Let Attackers Execute Code
News
3 min read

Palo Alto PAN-OS Buffer Overflow Flaws Could Let Attackers Execute Code

Palo Alto Networks has disclosed multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (TSA) component of PAN-OS. Tracked as CVE-2026-0288, it could allow unauthenticated attac

CyberShield TeamRead More
Attackers Can Abuse Claude Desktop to Execute Commands on Victim Machines
News
3 min read

Attackers Can Abuse Claude Desktop to Execute Commands on Victim Machines

A novel attack chain that turns Anthropic’s Claude Desktop application into a remote code execution vector, requiring no phishing email and no traditional malware. The technique instead weaponiz

CyberShield TeamRead More
Claude Cowork Expands to Web and Mobile With Background AI Agent Tasks
News
4 min read

Claude Cowork Expands to Web and Mobile With Background AI Agent Tasks

Anthropic has rolled out Claude Cowork to web and mobile platforms, letting AI agent sessions persist across devices and continue executing tasks even when users step away. The expansion, announced Ju

CyberShield TeamRead More
DuckDuckGo Browser to Block YouTube Ads by Default
News
4 min read

DuckDuckGo Browser to Block YouTube Ads by Default

A native YouTube ad-blocking feature was rolled out by DuckDuckGo across its desktop and mobile browsers, allowing users to watch YouTube videos without pre-roll or mid-roll interruptions. The feature

CyberShield TeamRead More
GitHub Verified Badge Can Appear on Multiple Hashes for Same Signed Commit
News
4 min read

GitHub Verified Badge Can Appear on Multiple Hashes for Same Signed Commit

A new disclosure reveals that a GitHub “Verified” badge does not guarantee that a commit hash uniquely identifies signed content, undermining a core assumption behind hash-based security c

CyberShield TeamRead More
New Research Details How FBI Uncovered Alleged Scattered Spider Member
News
4 min read

New Research Details How FBI Uncovered Alleged Scattered Spider Member

The extradition of an alleged Scattered Spider member from Finland to the United States has drawn attention far beyond the criminal charges themselves. Buried on page 8 of the indictment lies a detail

CyberShield TeamRead More
Bad Epoll Zero-Day Linux Kernel Flaw Lets Unprivileged Users Escalate to Root
News
4 min read

Bad Epoll Zero-Day Linux Kernel Flaw Lets Unprivileged Users Escalate to Root

A severe zero-day vulnerability dubbed Bad Epoll has been publicly disclosed in the Linux kernel’s epoll I/O event notification subsystem, allowing any unprivileged local user to escalate privil

CyberShield TeamRead More
Gaslight Malware Abuses Prompt Injection to Trick Automated AI Cybersecurity Agents
News
4 min read

Gaslight Malware Abuses Prompt Injection to Trick Automated AI Cybersecurity Agents

North Korean hackers have launched a sophisticated new macOS malware campaign that targets Mac users, specifically developers and those in the Web3 space. Historically, these threat actors rely on fak

CyberShield TeamRead More
ModSecurity Flaws Let Attackers Bypass WAF Rules and Request-Body Inspection
News
4 min read

ModSecurity Flaws Let Attackers Bypass WAF Rules and Request-Body Inspection

Two newly disclosed vulnerabilities in ModSecurity, the widely deployed open-source Web Application Firewall (WAF) engine, could allow attackers to bypass detection rules entirely. Both flaws affect M

CyberShield TeamRead More
Ousaban Banking Trojan Uses Daily-Changing DDNS Domains to Hide C2 Infrastructure
News
3 min read

Ousaban Banking Trojan Uses Daily-Changing DDNS Domains to Hide C2 Infrastructure

In May 2026, researchers at FortiGuard Labs uncovered a sophisticated new campaign delivering the Ousaban banking Trojan to users in Spain and Portugal. Originally known for targeting Brazil, this lat

CyberShield TeamRead More
Seven FatFs Vulnerabilities Exposing Embedded Devices to Code Execution
News
3 min read

Seven FatFs Vulnerabilities Exposing Embedded Devices to Code Execution

Seven newly disclosed vulnerabilities in FatFs, the ubiquitous FAT/exFAT filesystem library, could let a malicious USB drive, SD card, or firmware update trigger memory corruption and code execution o

CyberShield TeamRead More
BusySnake Stealer Targets Browser Passwords, Cookies, Telegram Sessions, and Crypto Keys
News
4 min read

BusySnake Stealer Targets Browser Passwords, Cookies, Telegram Sessions, and Crypto Keys

BusySnake Stealer, a previously undocumented Python-based infostealer actively deployed by an emerging APT we track as Armored Likho (aka Eagle Werewolf). BusySnake is purpose-built for Windows and en

CyberShield TeamRead More
CrownX Ransomware Embedded Inside Avalon Framework Targets Recovery and Backup Systems
News
5 min read

CrownX Ransomware Embedded Inside Avalon Framework Targets Recovery and Backup Systems

A previously undocumented multi-stage malware framework, tracked as Avalon, that embeds a ransomware component internally labeled CrownX and specifically targets recovery and backup systems. By placin

CyberShield TeamRead More
Hackers Abuse EdgeUpdate and GoogleUpdater to Deploy TimbreStealer Infostealer
News
4 min read

Hackers Abuse EdgeUpdate and GoogleUpdater to Deploy TimbreStealer Infostealer

A targeted campaign deploying the TimbreStealer infostealer by abusing legitimate updater binaries EdgeUpdate (msedgeupdate) and GoogleUpdater (goopdate) via DLL side-loading. Researchers Euler Neto a

CyberShield TeamRead More
Hackers Abuse Verified X Ads to Deliver Mac Malware Through ClickFix Attack
News
4 min read

Hackers Abuse Verified X Ads to Deliver Mac Malware Through ClickFix Attack

A trusted channels and verified profiles to amplify social-engineering campaigns, and a recent ClickFix-style operation on X (formerly Twitter) illustrates that risk. The ad redirected victims to a lo

CyberShield TeamRead More
Parrot 7.3 Released With Optimized builds and New Go menu system
News
4 min read

Parrot 7.3 Released With Optimized builds and New Go menu system

Parrot 7.3 arrives as a focused systems release that prioritizes performance and everyday polish over wholesale toolset changes. Dropping only months after the previous version, this release rebuilds

CyberShield TeamRead More
Alibaba to Ban Claude Code at Work Over Alleged Backdoor Security Risks
News
3 min read

Alibaba to Ban Claude Code at Work Over Alleged Backdoor Security Risks

Alibaba will reportedly ban the use of Anthropic’s Claude Code across its workplace environments starting July 10, following allegations that the AI coding assistant contains a covert backdoor-like me

CyberShield TeamRead More
Anthropic Details Claude Fable 5 Cyber Safeguards and AI Jailbreak Severity Framework
News
3 min read

Anthropic Details Claude Fable 5 Cyber Safeguards and AI Jailbreak Severity Framework

Anthropic has published new technical details on the cybersecurity safeguards protecting Claude Fable 5, which is now globally available following its redeployment. The disclosure covers two major ini

CyberShield TeamRead More
ChatGPT Sensitive Information Disclosure Flaw Abused File Download Mechanism
News
3 min read

ChatGPT Sensitive Information Disclosure Flaw Abused File Download Mechanism

A now-patched vulnerability in ChatGPT that chained a guardrail bypass with a path traversal flaw to achieve local file inclusion (LFI) within OpenAI’s sandboxed execution environment. The resea

CyberShield TeamRead More
Fake Google and Cloudflare Verification Pages Spread Multiple Malware Families
News
4 min read

Fake Google and Cloudflare Verification Pages Spread Multiple Malware Families

A sprawling ClickFix campaign that abuses fake Google and Cloudflare verification pages to trick users into infecting their own machines. Documented by Malwarebytes, the operation delivers a wide rang

CyberShield TeamRead More
FBI Warns TeamPCP Supply Chain Campaign Puts Developer Environments and Cloud Credentials at Risk
News
3 min read

FBI Warns TeamPCP Supply Chain Campaign Puts Developer Environments and Cloud Credentials at Risk

In 2026, the FBI issued a critical warning regarding a massive software supply chain campaign orchestrated by the threat group TeamPCP. This sophisticated attack compromised trusted software distribut

CyberShield TeamRead More
Malicious Websites Hide Prompt Instructions in DOM to Poison AI Agent Decision-Making
News
3 min read

Malicious Websites Hide Prompt Instructions in DOM to Poison AI Agent Decision-Making

Threat actors are turning web content into a new attack surface to target artificial intelligence workflows. Much like human users face phishing attacks, AI agents are increasingly vulnerable to Indir

CyberShield TeamRead More
PamStealer macOS Infostealer Uses Rust Payload to Validate and Steal Passwords
News
4 min read

PamStealer macOS Infostealer Uses Rust Payload to Validate and Steal Passwords

A newly discovered macOS infostealer, dubbed PamStealer, disguises itself as the popular open-source clipboard manager Maccy while quietly harvesting credentials, browser data, and clipboard contents

CyberShield TeamRead More
Pegasus Spyware Hacked MEP Serving on European Parliament PEGA Committee
News
4 min read

Pegasus Spyware Hacked MEP Serving on European Parliament PEGA Committee

Former Greek Member of the European Parliament (MEP) Stelios Kouloglou was repeatedly infected with NSO Group’s Pegasus spyware while actively serving on the very committee tasked with investiga

CyberShield TeamRead More
PoC Released for Microsoft Exchange SSRF Flaw That Lets Low-Privileged Users Read Files
News
3 min read

PoC Released for Microsoft Exchange SSRF Flaw That Lets Low-Privileged Users Read Files

A newly disclosed server-side request forgery (SSRF) vulnerability in Microsoft Exchange Server 2019, tracked as CVE-2026-45504, allows any authenticated, low-privileged user to read arbitrary files f

CyberShield TeamRead More
Scammers Use Fake App Store Listings and Reviews to Trick Users Into Installing Gambling PWAs
News
4 min read

Scammers Use Fake App Store Listings and Reviews to Trick Users Into Installing Gambling PWAs

Cybercriminals are constantly finding new ways to manipulate consumers using trusted corporate identities. Recently, a highly coordinated scam campaign has emerged that leverages the names of major br

CyberShield TeamRead More