npm’s Update to Harden Their Supply Chain, and Points to Consider
The Hacker NewsFeb 13, 2026Supply Chain Security / DevSecOps In December 2025,…
UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors
Ravie LakshmananFeb 13, 2026Cloud Security / Cyber Espionage A previously unknown threat…
Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations
Ravie LakshmananFeb 13, 2026Malware / Critical Infrastructure Several state-sponsored actors, hacktivist entities,…
Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs
Ravie LakshmananFeb 13, 2026Threat Intelligence / Malware A previously undocumented threat actor…
Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History
Cybersecurity researchers have discovered a malicious Google Chrome extension that's designed to…
Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
Cybersecurity researchers have discovered a fresh set of malicious packages across npm…
Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support
Ravie LakshmananFeb 12, 2026Cyber Espionage / Artificial Intelligence Google on Thursday said…
83% of Ivanti EPMM Exploits Linked to Single IP on Bulletproof Hosting Infrastructure
Ravie LakshmananFeb 12, 2026Vulnerability / Network Security A significant chunk of the…
First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials
Cybersecurity researchers have discovered what they said is the first known malicious…