Russian Hackers Leverage Oracle Cloud Infrastructure to Scaleway Object Storage
In a sophisticated cybersecurity attack uncovered this week, Russian threat actors have been observed exploiting multiple cloud service providers to deliver the notorious Lumma Stealer malware.
The campaign utilizes legitimate cloud infrastructure—including Oracle Cloud Infrastructure...
UAT-638 Hackers Exploit Cityworks Zero-Day to Attack IIS Servers With VSHell Malware
A sophisticated cyber threat group designated as UAT-6382 has been actively exploiting a critical zero-day vulnerability in Cityworks, a popular asset management system used by local governments across the United States.
The vulnerability, tracked as...
Researchers Warns of ‘Smiao Network’ Targeting Taiwan Federal Workers
Cybersecurity researchers have uncovered an expansion of a sophisticated Chinese intelligence recruitment operation known as the "Smiao Network," which has now extended its targeting to include Taiwanese federal workers.
The operation, previously identified targeting U.S....
Hackers Leveraging Trending TikTok Videos to Deliver Vidar & StealC Malware
In a concerning development that highlights the evolving tactics of threat actors, cybercriminals have begun exploiting the popularity of TikTok to distribute sophisticated information-stealing malware.
This new campaign specifically delivers Vidar and StealC infostealers by...
Threat Actors Hosted ZeroCrumb Malware on GitHub That Steals Browser Cookies
Cybersecurity researchers have identified a new infostealer malware called "ZeroCrumb" that was recently distributed through GitHub repositories.
This sophisticated malware specifically targets browser cookies from popular browsers including Chrome, Brave, and Edge, enabling attackers to...
Hackers Using Weaponized npm Packages to Attack React, Node.js JavaScript Frameworks
In a troubling development for the JavaScript ecosystem, security researchers have discovered a sophisticated campaign targeting popular frameworks through weaponized npm packages.
These malicious packages, which have accumulated over 6,200 downloads, masquerade as legitimate plugins...
Malicious VS Code Extensions Attacking Windows Solidity Developers to Steal Login Credentials
A sophisticated campaign targeting Solidity developers has emerged, utilizing Visual Studio Code's popularity and extension ecosystem as an attack vector.
Threat actors have deployed trojanized extensions that masquerade as developer utilities while secretly exfiltrating cryptocurrency...
Hackers Exploiting Trusted Google Domains to Inject Malicious Scripts
A sophisticated new malvertising scheme has emerged, transforming legitimate e-commerce websites into phishing platforms without the knowledge of site owners or advertisers.
Cybercriminals are exploiting integrations with Google APIs to inject malicious scripts into e-commerce...
Hackers Attacking Coinbase Users in a Sophisticated Social Engineering Attack
A massive wave of targeted social engineering attacks has been hitting Coinbase users since early 2025, with scammers exploiting insider access to obtain sensitive customer data.
Unlike traditional technical breaches, these attacks leverage psychological manipulation...
Lumma Stealer Infrastructure With 2,300 Domains That Attacks Millions of Users Worldwide Seized
In a coordinated global operation announced on May 21, 2025, law enforcement and cybersecurity partners have successfully disrupted the infrastructure behind Lumma Stealer, one of the most prolific information-stealing malware operations targeting users worldwide.
The...
Recent Posts
Russian Hackers Leverage Oracle Cloud Infrastructure to Scaleway Object Storage
In a sophisticated cybersecurity attack uncovered this week, Russian threat actors have been observed exploiting multiple cloud service providers to deliver the notorious Lumma...