Schedule a Demo

Cyber Security

Cyber Security
Cyber Security

Malware in the Wild as Malicious Fork of Legitimate Triton App Surfaces on GitHub

malware-in-the-wild-as-malicious-fork-of-legitimate-triton-app-surfaces-on-github

A malicious fork of the legitimate macOS application Triton has surfaced on GitHub, exploiting open-source repositories to distribute malware. The fraudulent repository, created under the account “JaoAureliano,” appeared as a copy of the original Triton app developed by Otávio C. Instead of providing genuine software, the fork redirected users to download a ZIP file containing […]

Malicious Chrome Extension Steals Facebook Business Manage 2FA Codes and Analytics Data

malicious-chrome-extension-steals-facebook-business-manage-2fa-codes-and-analytics-data

Malicious Chrome Extension Steals Facebook Business Manage 2FA Codes A malicious Chrome extension that claims to help Meta Business users quietly steals Facebook Business Manager 2FA codes and analytics data, putting high‑value ad accounts at risk of takeover. The extension, “CL Suite by @CLMasters” (ID: jkphinfhmfkckkcnifhjiplhfoiefffl), is still available in the Chrome Web Store and specifically […]

Noodlophile Malware Creators Evolve Tactics with Fake Job Postings and Phishing Lures

noodlophile-malware-creators-evolve-tactics-with-fake-job-postings-and-phishing-lures

The Noodlophile information stealer, originally uncovered in May 2025, has significantly evolved its attack strategies to bypass security measures. Initially, this malware hid behind deceptive advertisements for fake AI video generation platforms on social media, tricking users into downloading malicious ZIP files. These early campaigns focused on harvesting credentials and cryptocurrency wallets, which were then […]

Joomla Novarain/Tassos Framework Vulnerabilities Enables SQL injection and Unauthenticated File Read

joomla-novarain/tassos-framework-vulnerabilities-enables-sql-injection-and-unauthenticated-file-read

Joomla Novarain/Tassos Framework Vulnerabilities Websites running the Novarain/Tassos Framework are vulnerable to critical security flaws that allow unauthenticated file read, file deletion, and SQL injection attacks, potentially leading to remote code execution and full administrator takeover on unpatched systems. The issues affect multiple popular Tassos extensions and require urgent patching through the vendor’s updated releases. […]

Critical BeyondTrust Vulnerability Exploited in the Wild to Gain Full Domain Control

critical-beyondtrust-vulnerability-exploited-in-the-wild-to-gain-full-domain-control

BeyondTrust Vulnerability Exploit A critical vulnerability tracked as CVE-2026-1731 is being actively exploited in the wild, enabling attackers to gain full domain control over affected systems. Threat actors are leveraging this flaw to execute operating system commands remotely without authentication. The flaw, discovered in self-hosted BeyondTrust deployments, allows unauthenticated attackers to run arbitrary OS commands via specially crafted […]

Windows 11 KB5077181 Security Update Causing Some Devices to Restart in an Infinite Loop

windows-11-kb5077181-security-update-causing-some-devices-to-restart-in-an-infinite-loop

Windows 11 KB5077181 Security Update Microsoft’s February 10, 2026, security update KB5077181 for Windows 11 versions 24H2 (build 26200.7840) and 25H2 (build 26100.7840) has triggered widespread reports of critical boot failures just days after deployment. Users describe devices entering infinite restart loops, often exceeding 15 cycles, preventing access to the desktop. This cumulative update delivers […]

PentestAgent AI Penetration Testing Tool With Prebuilt Attack Playbooks and HexStrike Integration

pentestagent-ai-penetration-testing-tool-with-prebuilt-attack-playbooks-and-hexstrike-integration

PentestAgent PentestAgent, an open-source AI agent framework from developer Masic (GH05TCREW), has introduced enhanced capabilities, including prebuilt attack playbooks and seamless HexStrike integration. Released on GitHub by a researcher with the alias GH05TCREW, this tool leverages large language models (LLMs) like Claude Sonnet or GPT-5 via LiteLLM to conduct sophisticated black-box security assessments. PentestAgent operates […]

New Clickfix Attack Uses DNS Hijacking to Spread Malware

new-clickfix-attack-uses-dns-hijacking-to-spread-malware

Clickfix Attack DNS Hijacking spread malware A new evolution in the ClickFix social engineering campaign, which now employs a custom DNS hijacking technique to deliver malware. This attack method tricks users into executing malicious commands that utilize DNS lookups to fetch the next stage of the infection, allowing attackers to bypass traditional detection methods and […]

Threat Actors Exploit Claude Artifacts and Google Ads to Target macOS Users

threat-actors-exploit-claude-artifacts-and-google-ads-to-target-macos-users

Threat Actors Exploit Claude Artifacts Google Ads A sophisticated malware campaign targeting macOS users through Google-sponsored search results and legitimate platforms, including Anthropic’s Claude AI and Medium. The campaign has already reached over 15,000 potential victims through two distinct attack variants that exploit users’ trust in established online services. 15,000 potential victims (Source: Twitter) The […]

Threat Actor Allegedly Selling Critical Severity OpenSea 0-day Exploit Chain on Hacking Forums

threat-actor-allegedly-selling-critical-severity-opensea-0-day-exploit-chain-on-hacking-forums

OpenSea 0-day Exploit Chain A threat actor is reportedly selling a purported critical severity zero-day exploit chain targeting OpenSea for $100,000 USD in Bitcoin or Monero. The listing claims the vulnerability remains unpatched and undisclosed, raising alarms in the NFT community. The exploit allegedly targets flaws in OpenSea’s Seaport protocol order validation logic across Ethereum […]