How Hackers Exploit Windows Administrative Shares
The Huntress SOC team continues to see new Emotet, Trickbot, and Qakbot malware outbreaks within networks — regardless of antivirus, anti-spam, or firewall solutions. As a…
Month: June 2026
Hackers Are After the Gaps in Your Vulnerability Program: Here’s Their Playbook
A forum thread titled “Hacking for Profit. Working method” offers a rare glance into how underground communities pass information about vulnerability exploitation and hacking techniques…
Weaponized ChatGPT Download Site Delivers Malware Via Sponsored Search Results
A new malvertising campaign is exploiting ChatGPT’s popularity by promoting a weaponized fake download site via sponsored search results, delivering malware to both Windows and…
Frontline Workers Twice as Likely to Use Unapproved AI
New research by Mitel has revealed a widening gap between AI adoption and enablement, with limited support and low confidence contributing to the rise of…
Fake Ghidra, dnSpy & SpiderFoot Sites Used to Spread Malware
Hackers are abusing search results and professional-looking fake download portals to distribute malware by impersonating popular security tools like Ghidra, dnSpy, and SpiderFoot. These sites…
Lazarus Group Uses npm Brandjacking Campaign to Target Developers
A new npm campaign linked to North Korea’s Lazarus Group shows how attackers are using familiar-looking package names to gain access to developers’ systems and…
Scam Compound Trafficking Victim To Cybercrime Whistleblower: Mohammad Muzahir’s Story
04 Jun Scam Compound Trafficking Victim To Cybercrime Whistleblower: Mohammad Muzahir’s Story Posted at 08:43h in Blogs by Taylor Fox This week in cybersecurity from…
OAuth marketplace apps keep access after publishers vanish
Installing an app from the Google Workspace Marketplace or GitHub Marketplace can grant a third party access to company email, files, calendars, code repositories, CI…
Travel scams are everywhere. Here’s how to avoid them
Planning a holiday should be exciting, fun, and not a cybersecurity risk. But booking flights, hotels, and rental properties often means sharing sensitive personal and…
China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa
Ravie LakshmananJun 04, 2026Malware / Cybercrime A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target European organizations in the…
Interview: Clare Hickie, EMEA CTO, Workday
Clare Hickie, chief technology officer (CTO) for EMEA at Workday, sits in the Customer Experience Centre in the technology firm’s European headquarters in Dublin and…
NCSC Releases Software Supply Chain Attacks Guidance
In May 2026, malicious code appeared inside packages used across NHS software projects. The software supply chain attack named Mini Shai-hulud by researchers spread through…