The Cyber Trove

The Cyber Trove https://validator.w3.org/feed/docs/rss2.html CrySome RAT Emerges as Advanced .NET Malware With AV Killer and HVNC Capabilities Fake TradingView Premium Posts on Reddit Deliver Vidar and AMOS Stealers Critical Command Injection in AI Coding Agent Exposed GitHub Tokens Exposed Server Reveals TheGentlemen Ransomware Toolkit, Victim Credentials, and Ngrok Tokens 50,000 Sites at Risk from Critical Ninja Forms File Upload RCE Malicious Axios Package Delivers WAVESHAPER.V2 Backdoor in Supply Chain Attack Google Drive Introduces AI-Powered Ransomware Detection and File Restoration Hackers Weaponize Legitimate Windows Tools to Disable Antivirus Before Ransomware Attacks Google Now Allows You to Change Your @gmail.com Address in a Few Simple Steps New ClickFix Variant Uses Rundll32 and WebDAV to Evade PowerShell Detection CISA Adds Actively Exploited TrueConf Vulnerability to KEV Catalog Backdoored Telnyx Python SDK on PyPI Steals Credentials Across Platforms North Korean IT Worker Allegedly Used Stolen Identity and AI Resume in Job Application Scam Storm-1175 Exploits 0-Days to Deploy Medusa Ransomware in 24 Hours Anthropic Ends Claude Access for Third-Party AI Tools Like OpenClaw LinkedIn Browser Extension Scanning Controversy Explained 36 Malicious npm Strapi Packages Used in Targeted Supply Chain Attack Axios npm Supply Chain Attack: Detection, Risks, and Mitigation Guide GitHub C2 LNK Phishing Attack Linked to North Korea NoVoice Android Rootkit: Detection, Risks, and Mitigation Guide India Set to Ban Sale of Hikvision, TP-Link, CCTV Products From April How Threat Intelligence Reduces SOC Escalation Rates Leak Bazaar Organizes Stolen Corporate Data Into Lucrative Marketplace Microsoft Issues Critical WinRE and Setup Updates Ahead of 2026 Secure Boot Certificate Expiration Adobe Breach Allegation: 13M Support Tickets Exposed New Silver Fox Campaign Hits Japanese Businesses With Tax-Themed Phishing Lures CanisterWorm Gets Destructive as TeamPCP Deploys Iran-Focused Kubernetes Wiper Tycoon2FA Operators Resume Cloud Account Phishing After Infrastructure Disruption Chrome Security Update Fixes 8 Vulnerabilities Allowing Remote Code Execution Roundcube Webmail Security Updates Patch Multiple Critical Vulnerabilities Cybersecurity Companies’ Stocks Fall as Anthropic Tests Powerful New Model Threat Actors Continuously Attacking MS-SQL Servers to Deploy ICE Cloud Scanner FBI Chief Kash Patel’s Gmail Account Was Hacked by Iranian Hackers Windows 11 and Server 2025 Update to Block Untrusted Cross-Signed Kernel Drivers by Default European Commission Confirms Cyberattack Following AWS Account Hack NIST Releases Quick-Start Guide on Cybersecurity, Risk, and Workforce Management New ALP-001 Data Leak Site Linked to Active Initial Access Broker Hackers Probe Citrix NetScaler Instances Ahead of Likely CVE-2026-3055 Exploitation Libyan Oil Refinery Hit in Long-Running AsyncRAT Espionage Campaign Critical NetScaler ADC and Gateway Vulnerabilities Enable Remote Attacks Critical QNAP QVR Pro Vulnerability Allows Remote Attackers System Access SEO Poisoning Campaign Impersonates 25+ Apps to Deliver AsyncRAT Tax-Themed Google Ads Deliver BYOVD EDR Killer in Malvertising Campaign Mazda Data Breach Exposes Employee and Partner Records 511,000+ End-of-Life Microsoft IIS Instances Exposed Online CISA Warns of F5 BIG-IP Vulnerability Actively Exploited in Attacks CISA Warns of Apple Vulnerabilities Linked to DarkSword iOS Exploit Chain CanisterWorm Spreads Through npm Accounts Stealing Tokens $30 IP-KVM Flaws Could Enable BIOS-Level Control Across Enterprise Networks Copyright-Themed Lures Deliver Multi-Stage PureLog Stealer