Cyber Hawk

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

March 25, 2026

Cybersecurity researchers are calling attention to an active device code phishing campaign that's targeting Microsoft 365 identities across more than 340 organizations in the U.S., Canada, Austra…

Cyber Security

FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns

March 25, 2026

The U.S. Federal Communications Commission (FCC) said on Monday that it was banning the import of new, foreign-made consumer routers, citing "unacceptable" risks to cyber and national secur…

Cyber Security

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise

March 24, 2026

TeamPCP, the threat actor behind the recent compromises of Trivy and KICS, has now compromised a popular Python package named litellm, pushing two malicious versions containing a credential harvester…

Cyber Security

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

March 24, 2026

Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor known as TeamPCP, the cloud-native cybercriminal operation also behind the …

Cyber Security

Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks

March 24, 2026

Citrix has released security updates to address two vulnerabilities in NetScaler ADC and NetScaler Gateway, including a critical flaw that could be exploited to leak sensitive data from the applicati…

Cyber Security

North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware

March 23, 2026

The North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, have been attributed to a malware family tracked as StoatWaffle that's distributed via maliciou…

Cyber Security

We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them

March 23, 2026

AWS Bedrock is Amazon's platform for building AI-powered applications. It gives developers access to foundation models and the tools to connect those models directly to enterprise data and system…

Bitcoin Mining

Hot News

Labels

Report Abuse

Recent posts

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks

North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware

We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them

Popular Feeds

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Featured News

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

Random Posts

Popular Posts

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Bitcoin Mining

Hot News

Labels

Recent posts

Share

Popular Feeds

Featured News

Random Posts

Popular Posts