Category Archives: Threat Alerts
Google Chrome Security Update: 60 New Vulnerabilities Addressed, Two Critical
A critical Google Chrome security update addresses 60 new vulnerabilities, including two critical ones, affecting billions of users. Google advises manual updates for timely protection as the rollout may take time. Continue reading
Shadow AI Poses Significant Security Risks for Enterprises
The rapid adoption of AI tools by employees without IT approval, known as Shadow AI, poses significant security risks for enterprises. These unapproved tools create new blind spots, expanding the attack surface and leading to uncontrolled data exposure and weakened identity security. Continue reading
Digital Extortion Surge: Understanding the New Industrialized Threat
A record surge in digital extortion is targeting victims with automated scams and social media data; learn how to protect yourself from these industrialized attacks. Continue reading
UNC6783 Cluster Targets Helpdesks in Sophisticated Extortion Campaign
The threat group known as the UNC6783 cluster is launching phishing attacks against helpdesks to steal MFA credentials and sensitive corporate data. Continue reading
Russian GRU SOHO Routers Exploited: FBI & NSA Disrupt Network
The FBI and NSA, alongside international partners, have disrupted a Russian GRU network exploiting vulnerable SOHO routers to steal sensitive data. This highlights the ongoing threat from Russian GRU SOHO Routers exploitation, prompting an urgent call for users to update firmware and enhance security measures. Continue reading
Iranian APT PLC Attacks Target U.S. Critical Infrastructure
Iranian-affiliated threat actors have escalated their targeting of U.S. critical infrastructure, specifically disrupting Programmable Logic Controllers (PLCs). CISA urges organizations to mitigate these Iranian APT PLC attacks, which have led to operational disruptions and financial losses. Continue reading
UNC6783 Mr. Raccoon: New BPO Live Chat Attacks Explained
Discover how the threat actor UNC6783 Mr. Raccoon is leveraging live chat social engineering against BPOs to steal session tokens and perform data extortion. Continue reading
CVE-2026-34040: Docker Engine Auth Bypass Risks Host Takeover
A critical CVE-2026-34040 flaw allows attackers to bypass Docker authorization plugins, potentially leading to full host takeover. Update to version 29.3.1 now. Continue reading
Axios Supply Chain Attack: Lazarus Group Weaponizes JavaScript Library
The North Korean-linked Lazarus Group has executed a significant Axios supply chain attack by injecting malicious dependencies into the popular Axios JavaScript library. This silent infection enables remote code execution across thousands of corporate environments, highlighting the critical importance of supply chain security. Continue reading