Chinese-speaking individuals are the target of a new campaign that uses a trojanized version of SumatraPDF reader to deploy the AdaptixC2 Beacon post-exploitation agent and ultimately facilitate the abuse of Microsoft Visual Studio Code (VS Code) tunnels for remote access. Zscaler ThreatLabz, which discovered the campaign last month, has attributedRead More »Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2

A high-severity security flaw in LMDeploy, an open-source toolkit for compressing, deploying, and serving LLMs, has come under active exploitation in the wild less than 13 hours after its public disclosure. The vulnerability, tracked as CVE-2026-33626 (CVSS score: 7.5), relates to a Server-Side Request Forgery (SSRF) vulnerability that could beRead More »LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

A previously undocumented threat activity cluster known as UNC6692 has been observed leveraging social engineering tactics via Microsoft Teams to deploy a custom malware suite on compromised hosts. “As with many other intrusions in recent years, UNC6692 relied heavily on impersonating IT helpdesk employees, convincing their victim to accept aRead More »UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware

What security experts are saying about the Claude Mythos breach. 

NIST recently changed to how it handles CVEs. 

Bitwarden CLI has been compromised as part of the newly discovered and ongoing Checkmarx supply chain campaign, according to new findings from JFrog and Socket. “The affected package version appears to be @bitwarden/[email protected], and the malicious code was published in ‘bw1.js,’ a file included in the package contents,” the applicationRead More »Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign