Browser extension malware infected 8.8M users in DarkSpectre attack

Browser extensions turned malicious after years of legitimate operation in DarkSpectre campaign affecting millions. The ...

How generative AI accelerates identity attacks against Active Directory

Generative AI is accelerating password attacks against Active Directory, making credential abuse faster and more effective.
CSO Online

Open WebUI bug turns ‘free model’ into an enterprise backdoor

The bug allows attacker-controlled model servers to inject code, steal session tokens, and, in some cases, escalate to remote ...
Tax Guru

Technical & Operational Impediments in Implementation of Section 139(8A)

Explore the legal and technical hurdles in filing Updated Returns under Section 139(8A), including Excel utility dependencies and procedural ...
Infosecurity Magazine

VVS Stealer Uses Advanced Obfuscation to Target Discord Users

A new Python-based malware called VVS stealer has been identified, targeting Discord users with stealthy techniques to steal ...
The Hacker News

⚡ Weekly Recap: IoT Exploits, Wallet Breaches, Rogue Extensions, AI Abuse & More

First 2026 cyber recap covering IoT exploits, wallet breaches, malicious extensions, phishing, malware, and early AI abuse.
Security Boulevard

Top CVEs of December 2025

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...