The North Korean state-sponsored threat actor known as Kimsuky (aka Velvet Chollima) has been attributed to a fresh set of cyber attacks targeting South Korean military and corporate entities through March and April 2026. “Kimsuky employed a range of tailored social engineering tactics, such as spoofing security software installation pagesRead More »Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels

A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service, that allows an authenticated user to execute arbitrary code under certain conditions. The security flaw, per Rapid7, is rated 9.4 on the CVSS scoring system. It does not have a CVE identifier. “The vulnerability allowsRead More »Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code

In the last 12 months, 92% of agencies experienced some form of cyber threat. Yet, only 20% plan to establish an incident response plan. 

Threat actors are continuing to exploit a critical, now-patched security flaw impacting FortiClient Endpoint Management Server (EMS) deployments to deliver credential-stealing malware. “The campaign abused trusted endpoint management infrastructure to deliver malware across managed endpoints,” Arctic Wolf said. “Threat actors disguised the credential stealer payload as a Fortinet endpoint

Security magazine speaks to a researcher about an observed cyberattack driven entirely by AI. 

The incident was caused by a social engineering attack targeting an employee device. 

Microsoft has come out strongly in favor of Coordinated Vulnerability Disclosure (CVD), urging the research community to share their findings and give affected vendors an opportunity to better understand the impact and address them before they are publicly disclosed. The development comes after a researcher named Chaotic Eclipse (aka Nightmare-Eclipse)Read More »Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal