OFAC Sanctions DPRK IT Worker Network Funding WMD Programs Through Fake Remote Jobs
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC)…
LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader
The ransomware operation known as LeakNet has adopted the ClickFix social engineering…
CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths
Ravie LakshmananMar 17, 2026Vulnerability / Network Security The U.S. Cybersecurity and Infrastructure…
GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos
Ravie LakshmananMar 16, 2026Malware / Cryptocurrency The GlassWorm malware campaign is being…
Chrome 0-Days, Router Botnets, AWS Breach, Rogue AI Agents & More
Ravie LakshmananMar 16, 2026Cybersecurity / Hacking Some weeks in security feel normal.…
Android 17 Blocks Non-Accessibility Apps from Accessibility API to Prevent Malware Abuse
Ravie LakshmananMar 16, 2026Mobile Security / Data Protection Google is testing a…
Investigating a New Click-Fix Variant
Disclaimer: This report has been prepared by the Threat Research Center to…
GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers
Cybersecurity researchers have flagged a new iteration of the GlassWorm campaign that…
OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration
Ravie LakshmananMar 14, 2026Artificial Intelligence / Endpoint Security China's National Computer Network…