Security Articles

41 min read

The Hidden Cost of Recurring Credential Incidents

This article examines the hidden operational costs of recurring credential incidents beyond high-profile data breaches.

New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips

New research introduces GPUBreach, a RowHammer-based attack on NVIDIA GPUs using GDDR6 memory that achieves full CPU privilege escalation.

41 min read

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

This article covers Storm-1175, a China-linked threat actor exploiting zero-day and N-day vulnerabilities to rapidly deploy Medusa ransomware against organizations in healthcare, education, finance, and professional services.

31 min read

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

A critical CVSS 10.0 remote code execution vulnerability (CVE-2025-59528) in Flowise, an open-source AI platform, is under active exploitation with over 12,000 exposed instances.

GitLab

1015 min read

Pipeline security lessons from March supply chain incidents

This article examines four March 2026 supply chain attacks on CI/CD pipelines and proposes GitLab policies as prevention.

Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

This article covers an Iran-linked password-spraying campaign targeting Microsoft 365 environments across 300+ Israeli and 25+ UAE organizations in early 2026.

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

This article covers multi-stage cyberattacks linked to North Korean threat actors (DPRK) targeting South Korean organizations, using GitHub as command-and-control (C2) infrastructure.

21 min read

Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps

This article outlines three steps SOCs can take to handle multi-OS cyberattacks across Windows, macOS, Linux, and mobile environments.

31 min read

⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

This week's cybersecurity recap covers major incidents including the Axios npm supply chain attack, multiple zero-day exploits, and new malware campaigns.

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

This article analyzes the March 2026 LiteLLM supply chain attack and provides guidance on protecting developer endpoints from credential harvesting.

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

Qilin and Warlock ransomware groups are leveraging the BYOVD (Bring Your Own Vulnerable Driver) technique to disable over 300 EDR security tools on compromised systems.

51 min read