News
Pwn2 Own Berlin 2026 awards $1. 3 M in prizes for critical vulnerabilities
26+ min ago (18+ words) Ethical hackers uncovered nearly 50 vulnerabilities, with the top exploit earning a single team a $200, 000 payout...
VIP Keylogger Uses Steganography and Script Obfuscation
10+ hour, 46+ min ago (124+ words) SOC Prime Bias: Medium Rationale: This section details the precise execution of the adversary technique (TTP) designed to trigger the detection rule. The commands and narrative MUST directly reflect the TTPs identified and aim to generate the exact telemetry expected…...
Compromised Nx Console VS Code Extension Steals Developer and Cloud Secrets
48+ min ago (24+ words) gbhackers. com Compromised Nx Console VS Code Extension Steals Developer and Cloud Secrets...
When Worm Source Code Goes Open Source: The Shai-Hulud Clones Arrive
1+ day, 34+ min ago (53+ words) Team PCP open-sourced the Shai-Hulud worm last week. The first clones surfaced on npm days later. The acceleration we have been warning about since December is now playing out in public, and the most important detail is not how sophisticated…...
Resilient and Secure Manufacturing: Addressing the Gap Between Uptime and Cybersecurity
1+ day, 19+ hour ago (91+ words) Industrial Cyber Resilient and Secure Manufacturing: Addressing the Gap Between Uptime and Cybersecurity This session from Industrial Cyber Days Manufacturing 2026 features Mike Holcomb, Founder, Util Sec, examining why manufacturing organizations are increasingly exposed to ransomware, AI-assisted attacks, and operational disruption…...
Grafana refuses ransom demand after Git Hub breach
2+ hour, 25+ min ago (254+ words) Grafana Labs, the maker of popular open source monitoring and observability tooling, is resisting paying off a threat actor that gained access to its Git Hub environment and downloaded its codebase. Grafana is a popular tool used to visualise metrics,…...
CISA Admin Leaked AWS Gov Cloud Keys on Github
9+ hour, 2+ min ago (1580+ words) In Cybersecurity News - Original News Source is krebsonsecurity. com by Blog Writer May 18, 2026 A redacted screenshot of the now-defunct "Private CISA" repository maintained by a CISA contractor. The Git Hub repository that Valadon flagged was named "Private-CISA," and it harbored…...
Pure Logs Delivered via Paws Runner Steganography
11+ hour, 7+ min ago (400+ words) SOC Prime SOC Prime Bias: Medium Pure Logs Delivered Through Paws Runner Steganography The campaign relies on a phishing email carrying a TXZ archive that delivers a Java Script loader, which sets environment variables and launches conhost. exe in headless…...
SHub mac OS infostealer variant spoofs Apple security updates
8+ hour, 8+ min ago (692+ words) A new variant of the "SHub" mac OS infostealer uses Apple Script to show a fake security update message and installs a backdoor. Dubbed Reaper, the new version steals sensitive browser data, collects documents and files that may contain financial…...
April 2026 Updates to EBS Technology Codelevel Checker (ETCC) - Part II
6+ hour, 17+ min ago (31+ words) ETCC has been updated to include additional bug fixes and patching. ETCC now includes updates for the April 2026 proactive patch combinations for the Oracle Database for on Linux x86-64....