Phish of the day: Microsoft OAuth scams abuse redirects for malware delivery

The phishing expedition targets government and public-sector organizations, according to a Monday report from Redmond's ...
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...
YTECHB

Claude Code in 2026: A Beginner’s Guide to Claude Code

Claude Code is the new AI coding assistant that many users are using in their workflows. Here's everything you need to know ...

Chainguard Customers Have 94% Python Ecosystem Coverage for Their Environments

Chainguard, the trusted source for open source, today announced it has expanded Chainguard Libraries coverage across Python, Java, and JavaScript, with customers seeing 94% coverage across the Python ...
SecurityWeek

‘Arkanix Stealer’ Malware Disappears Shortly After Debut

The Arkanix Stealer malware can collect and exfiltrate system information, browser data, VPN information, and arbitrary files ...

ASD releases Azul open-source malware analysis tool

Sample files for Azul are kept in a Simple Storage Service (S3) compatible binary large object (blob) store, and processed ...
The Hacker News

Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb

Researchers uncover wormable XMRig campaign using BYOVD exploit and LLM-built React2Shell attacks hitting 90+ hosts.

Russian hacker uses multiple AI tools to break hundreds of firewalls

A Russian hacker was recently seen brute-forcing their way into hundreds of firewalls - but what makes this campaign really ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
Arabian Post

Silver Fox escalates stealth malware tactics

The BYOVD method gained prominence after several ransomware groups adopted it to disable antivirus software, and it has since migrated into espionage playbooks. Analysts argue that the boundary ...
Security Boulevard

Attacker Breached 600 FortiGate Appliances in AI-Assisted Campaign: Amazon

A bad actor used AI tools to compromise more than 600 FortiGate appliances around the world in five weeks, Amazon says, the latest example of how hackers are increasing are using the technology to ...