Cyber Hawk

Cyber Security

Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware

March 17, 2026

North Korean threat actors have been observed sending phishing to compromise targets and obtain access to a victim's KakaoTalk desktop application to distribute malicious payloads to certain cont…

Cyber Security

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

March 16, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity security flaw impacting Wing FTP to its Known Exploited Vulnerabilities (KEV) catalog, citing eviden…

Cyber Security

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

March 16, 2026

The GlassWorm malware campaign is being used to fuel an ongoing attack that leverages the stolen GitHub tokens to inject malware into hundreds of Python repositories. "The attack targets Python …

Cyber Security

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

March 16, 2026

Three different ClickFix campaigns have been found to act as a delivery vector for the deployment of a macOS information stealer called MacSync. "Unlike traditional exploit-based attacks, this m…

Cyber Security

DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage

March 16, 2026

Ukrainian entities have emerged as the target of a new campaign likely orchestrated by threat actors linked to Russia, according to a report from S2 Grupo's LAB52 threat intelligence team. The ca…

Cyber Security

Android 17 Blocks Non-Accessibility Apps from Accessibility API to Prevent Malware Abuse

March 15, 2026

Google is testing a new security feature as part of Android Advanced Protection Mode (AAPM) that prevents certain kinds of apps from using the accessibility services API. The change, incorporated in …

Cyber Security

OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration

March 14, 2026

China's National Computer Network Emergency Response Technical Team (CNCERT) has issued a warning about the security stemming from the use of OpenClaw (formerly Clawdbot and Moltbot), an open-sou…

Bitcoin Mining

Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage

Android 17 Blocks Non-Accessibility Apps from Accessibility API to Prevent Malware Abuse

OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration

Popular Feeds

Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit

Featured News

AI is Everywhere, But CISOs are Still Securing It with Yesterday's Skills and Tools, Study Finds

Random Posts

Popular Posts

Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit

Bitcoin Mining

Share

Popular Feeds

Featured News

Random Posts

Popular Posts