Schedule a Demo

Cyber Security

Cyber Security
Cyber Security

Tycoon 2FA Phishing Kit Disrupted by Microsoft, Europol and Partners

tycoon-2fa-phishing-kit-disrupted-by-microsoft,-europol-and-partners

Microsoft, Europol, and partners have dismantled the Tycoon 2FA phishing-as-a-service (PhaaS) platform, seizing 330 domains used for credential theft and MFA bypass. This coordinated action disrupts a service active since 2023 that powered tens of millions of phishing emails monthly. Tycoon 2FA enabled cybercriminals to bypass multifactor authentication (MFA) via adversary-in-the-middle (AiTM) techniques, capturing credentials, […]

Operation Leak Dismantles LeakBase Cybercriminal Forum User Data, IP Logs Secured by Authorities

operation-leak-dismantles-leakbase-cybercriminal-forum-user-data,-ip-logs-secured-by-authorities

The FBI, in coordination with multiple international law enforcement agencies, has officially seized LeakBase, a prominent cybercriminal forum notorious for hosting and trading stolen databases, under a coordinated global operation dubbed “Operation Leak.” Both primary domains, leakbase[.]ws and leakbase[.]la, now redirect visitors to an FBI seizure banner, with name servers switched to ns1.fbi.seized.gov and ns2.fbi.seized.gov. The takedown was […]

CISA Warns of VMware Aria Operations Vulnerability Exploited in Attacks

cisa-warns-of-vmware-aria-operations-vulnerability-exploited-in-attacks

VMware Aria Operations Vulnerability A critical vulnerability affecting VMware Aria Operations has been added to the Known Exploited Vulnerabilities (KEV) catalog. Broadcom recently issued a security advisory detailing a flaw that allows unauthenticated attackers to execute arbitrary commands. Organizations are urged to implement mitigations or discontinue use of the product if a fix is not […]

SloppyLemming Espionage Campaign Uses BurrowShell Backdoor and Rust RAT to Hit Pakistan and Bangladesh Targets

sloppylemming-espionage-campaign-uses-burrowshell-backdoor-and-rust-rat-to-hit-pakistan-and-bangladesh-targets

A suspected India-aligned threat group known as SloppyLemming has been conducting a sustained espionage campaign against government agencies, defense organizations, nuclear oversight bodies, and critical infrastructure operators in Pakistan and Bangladesh. Active since 2021 and also tracked as Outrider Tiger and Fishing Elephant, the group deployed two newly documented tools between January 2025 and January […]

Hackers Leverage Telegram for Initial Access to Corporate VPN, RDP, and Cloud Environments

hackers-leverage-telegram-for-initial-access-to-corporate-vpn,-rdp,-and-cloud-environments

Telegram, once widely recognized as a privacy-focused messaging application, has quietly transformed into one of the most powerful operational platforms used by cybercriminals today. What dark web forums once offered — anonymity, exclusive access, and a marketplace for stolen data — Telegram now delivers at a much faster pace, with far less technical knowledge required […]

Threat Actors Exploit OpenVSX Aqua Trivy with Malicious AI Prompts to Hijack Local Coding Tools

threat-actors-exploit-openvsx-aqua-trivy-with-malicious-ai-prompts-to-hijack-local-coding-tools

A supply chain attack targeting developers surfaced on March 2, 2026, when unauthorized code was found inside two versions of the Aqua Trivy VS Code extension on the OpenVSX registry. The compromised versions — 1.8.12 and 1.8.13 — were uploaded on February 27 and 28, 2026, under the aquasecurityofficial.trivy-vulnerability-scanner namespace. The attack introduced hidden natural-language prompts designed […]

Chrome Gemini Vulnerability Lets Attackers Access Victims Camera and Microphone Remotely

chrome-gemini-vulnerability-lets-attackers-access-victims-camera-and-microphone-remotely

Chrome Gemini Vulnerability A high-severity security vulnerability has been discovered in Google Chrome’s integrated Gemini AI assistant, exposing users to unauthorized camera and microphone access, local file theft, and phishing attacks, all without requiring any user interaction beyond launching the browser’s built-in AI panel. Tracked as CVE-2026-0628, the flaw was uncovered by researchers at Palo […]

Pixel Perfect Extension Abuse Enables Covert Script Injection and Security Header Removal

pixel-perfect-extension-abuse-enables-covert-script-injection-and-security-header-removal

A browser extension that once earned a Featured badge from Google quietly turned into a remote code execution tool after its ownership changed hands, exposing thousands of users to covert script injection and full browser security header stripping. The campaign, centered on a legitimate-looking Google Lens wrapper called QuickLens, highlights how even a well-reviewed, functional […]

OpenClaw 0-Click Vulnerability Allows Malicious Websites to Hijack Developer AI Agents

openclaw-0-click-vulnerability-allows-malicious-websites-to-hijack-developer-ai-agents

A critical zero-interaction vulnerability in OpenClaw, one of the fastest-growing open-source AI agent frameworks in history, has been discovered by Oasis Security researchers, allowing any malicious website to silently seize full control of a developer’s AI agent without requiring plugins, extensions, or any user action. OpenClaw, a self-hosted AI agent formerly known as Clawdbot and […]

Hackers Abuse Windows File Explorer and WebDAV for Stealthy Malware Delivery

hackers-abuse-windows-file-explorer-and-webdav-for-stealthy-malware-delivery

Hackers Abuse Windows File Explorer WebDAV Cybercriminals are increasingly abusing a legacy feature within Windows File Explorer to distribute malware, bypassing traditional web browser security and endpoint detection controls. According to a threat report by Kahng An of the Cofense Intelligence Team, threat actors are leveraging Web-based Distributed Authoring and Versioning (WebDAV) to trick victims […]