Schedule a Demo

Cyber Security

Cyber Security
Cyber Security

175,000 Exposed Ollama Hosts Enable Code Execution and External System Access

175,000-exposed-ollama-hosts-enable-code-execution-and-external-system-access

A significant security discovery reveals that approximately 175,000 Ollama servers remain publicly accessible across the internet, creating a serious risk for widespread code execution and unauthorized access to external systems. Ollama, an open-source framework designed to run artificial intelligence models locally, has become unexpectedly exposed due to simple configuration changes that administrators make without fully […]

TAMECAT PowerShell-Based Backdoor Exfiltrates Login Credentials from Microsoft Edge and Chrome

tamecat-powershell-based-backdoor-exfiltrates-login-credentials-from-microsoft-edge-and-chrome

A sophisticated PowerShell-based malware named TAMECAT has emerged as a critical threat to enterprise security, targeting login credentials stored in Microsoft Edge and Chrome browsers. This malware operates as part of espionage campaigns conducted by APT42, an Iranian state-sponsored cyber-espionage group that has been actively targeting high-value senior defense and government officials worldwide. The threat […]

Hackers Weaponized Open VSX Extension with Sophisticated Malware After Reaching 5066 Downloads

hackers-weaponized-open-vsx-extension-with-sophisticated-malware-after-reaching-5066-downloads

A dangerous malware campaign has infiltrated the Open VSX extension marketplace, compromising over 5,000 developer workstations through a fake Angular Language Service extension. The malicious package disguised itself as legitimate development tooling, bundling authentic Angular and TypeScript components alongside encrypted malware code that activates when developers open HTML or TypeScript files. The extension operated undetected […]

Exposed Open Directory Leaks BYOB Framework Across Windows, Linux, and macOS

exposed-open-directory-leaks-byob-framework-across-windows,-linux,-and-macos

Threat researchers have uncovered an actively serving command and control server hosting a complete deployment of the BYOB framework following the discovery of an exposed open directory. The server, located at IP address 38[.]255[.]43[.]60 on port 8081, was found distributing malicious payloads designed to establish persistent remote access across Windows, Linux, and macOS systems. Hosted […]

Google Announces Android Theft Protection Feature to Make Your Device Harder Target for Hackers

google-announces-android-theft-protection-feature-to-make-your-device-harder-target-for-hackers

Google has rolled out a comprehensive update to Android’s theft protection capabilities, introducing stronger authentication safeguards and enhanced recovery tools designed to protect users before, during, and after theft attempts. The multi-layered defense system, announced on January 26, 2026, builds on existing protections and aims to transform Android devices into significantly harder targets for criminals. […]

Swarmer Tool Evading EDR With a Stealthy Modification on Windows Registry for Persistence

swarmer-tool-evading-edr-with-a-stealthy-modification-on-windows-registry-for-persistence

Praetorian Inc. has publicly released Swarmer, a tool enabling low-privilege attackers to achieve stealthy Windows registry persistence by sidestepping Endpoint Detection and Response (EDR) monitoring. Deployed operationally since February 2025, Swarmer exploits mandatory user profiles and the obscure Offline Registry API to modify the NTUSER hive without triggering standard registry hooks. Traditional registry persistence via […]

Threat Actors Leverage Real Enterprise Email Threads to Deliver Phishing Links

threat-actors-leverage-real-enterprise-email-threads-to-deliver-phishing-links

In a sophisticated supply chain phishing attack, threat actors hijacked an ongoing email thread among C-suite executives discussing a document awaiting final approval. The intruder, posing as a legitimate participant, replied directly with a phishing link mimicking a Microsoft authentication form. Researchers attribute this to a compromised sales manager account at an enterprise contractor, allowing […]

ZAP JavaScript Engine Memory Leak Issue Impacts Active Scan Usage

zap-javascript-engine-memory-leak-issue-impacts-active-scan-usage

The ZAP (Zed Attack Proxy) project, a widely used open-source web application security scanner, has disclosed a critical memory leak in its JavaScript engine. This flaw, likely present for some time, now disrupts active scanning workflows following the introduction of a new JavaScript scan rule in the OpenAPI add-on. Security teams relying on ZAP for […]

Fake CAPTCHA Attack Leverages Microsoft Application Virtualization (App-V) to Deploy Malware

fake-captcha-attack-leverages-microsoft-application-virtualization-(app-v)-to-deploy-malware

A newly discovered campaign demonstrates a sophisticated approach to delivering information-stealing malware through a combination of social engineering and legitimate Windows components. The attack begins with a deceptive CAPTCHA prompt that tricks users into executing commands manually through the Windows Run dialog, presenting the infection as a required verification step. Instead of using traditional PowerShell […]

Attackers Hijacking Official GitHub Desktop Repository to Distribute Malware as Official Installer

attackers-hijacking-official-github-desktop-repository-to-distribute-malware-as-official-installer

Cybercriminals have discovered a dangerous way to trick developers into downloading malware by exploiting how GitHub works. The attack involves creating fake versions of the GitHub Desktop installer and making them appear legitimate to unsuspecting users. Between September and October 2025, this campaign primarily targeted users in Europe and the European Economic Area, though infections […]