Intro Quite some time has passed since my last blog post, so I decided to present a nice feature of…
The cybersecurity landscape has entered a dangerous new phase where autonomous AI agents are transforming from simple automation tools into…
A high-severity authentication bypass vulnerability has been discovered in ClawDBot, a popular npm package, enabling attackers to achieve remote code…
Suspected Chinese state-sponsored attackers hijacked the Notepad++ update mechanism by compromising the software project’s shared hosting server and intercepting and…
The Hacker NewsFeb 02, 2026Threat Detection / Endpoint Security For mid-market organizations, cybersecurity is a constant balancing act. Proactive, preventative…
When a CEO’s deepfake appears in a fraudulent investor call, when stolen credentials surface on dark web marketplaces, or when…
This blogpost describes how I got annoyed by vulnerabilities in 3rd party Windows applications, which allowed to execute local files…
A critical vulnerability in Gakido, an HTTP client library by HappyHackingSpace, has been discovered that allows attackers to inject arbitrary…
Arsink is a cloud-native Android Remote Access Trojan (RAT) that steals sensitive data and grants attackers deep control over infected…
Nation-state hack exploited hosting infrastructure to hijack Notepad++ updates Pierluigi Paganini February 02, 2026 Notepad++ maintainer says nation-state attackers hijacked…
I have seen on twitter that there is use for another PDF callback Proof-of-Concept in Adobe Reader. Last year a…
Security teams defending Linux environments now face a sophisticated threat designed to evade traditional detection. A newly uncovered fileless malware…