Fresh Wave of GlassWorm VS Code Extensions Slices Through Supply Chain – Dark Reading
Attackers continue to scale a campaign to seed Open VSX with seemingly benign VS Code extensions that spread self-propagating malware. – Read More
Dark Reading
UNC6692 Combines Social Engineering, Malware, Cloud Abuse – Dark Reading
A newly discovered threat actor is using Microsoft Teams, AWS S3 buckets, and custom “Snow” malware in a multipronged campaign. – Read More
Unpatched ‘PhantomRPC’ Flaw in Windows Enables Privilege Escalation – Dark Reading
A researcher discovered five different exploit paths that stem from an architectural weakness in how Windows’ Remote Procedure Call (RPC) mechanism handles connections to unavailable services. – Read More
20-Year-Old Malware Rewrites History of Cyber Sabotage – Dark Reading
Researchers have uncovered a malware framework dubbed “fast16” that predates Stuxnet by 5 years. – Read More
Parsing Agentic Offensive Security’s Existential Threat – Dark Reading
Some fear frontier LLMs like Claude Mythos and Anthropic’s GPT-5.5 will lead to cybersecurity annihilation. Ari Herbert-Voss notes this could be an opportunity. – Read More
Helping Romance Scam Victims Require a Proactive, Empathic Approach – Dark Reading
People targeted by confidence schemes find getting help is a lonely road. Experts want law enforcement, financial and government institutions to work together and protect them. – Read More
US Busts Myanmar Ring Targeting US Citizens in Financial Fraud – Dark Reading
Some 29 people were charged, including a Cambodian senator, and authorities seized more than 500 Web domains tied to fake investment sites. – Read More
Glasswing Secured the Code. The Rest of Your Stack Is Still on You – Dark Reading
Forgotten integrations, shadow IT, SaaS, and now shadow AI and agents are everywhere, and attackers don’t need sophisticated AI models to take advantage. – Read More
AI Phishing Is No. 1 With a Bullet for Cyberattackers – Dark Reading
In the last six months, companies have seen a significant influx of AI-powered phishing, as cyberattackers progress from small campaigns to 1-to-1 personalized attacks. – Read More
North Korea’s Lazarus Targets macOS Users via ClickFix – Dark Reading
Lazarus continues leveraging ClickFix for initial access and data theft, in this case, against Mac-centric organizations and their high-value leaders. – Read More
Chinese APT Abuses Multiple Cloud Tools to Spy on Mongolia – Dark Reading
The threat actor gave itself plenty of options to support command and control, tapping Microsoft Outlook, Slack, Discord, and file.io for online espionage. – Read More
Tropic Trooper APT Takes Aim at Home Routers, Japanese Targets – Dark Reading
The Chinese state-sponsored cyber threat is known for moving fast and trying odd attack vectors; now it’s branching out in tools, victimology, and TTPs. – Read More
China-Backed Hackers Are Industrializing Botnets – Dark Reading
China’s state-backed groups are now using covert networks of compromised devices to execute attacks in a low-cost, low-risk, and deniable way. – Read More
Bad Memories Still Haunt AI Agents – Dark Reading
Cisco found and fixed a significant vulnerability in the way Anthropic handles memories, but experts warn that mishandled memory files will continue threaten AI systems. – Read More
‘Zealot’ Shows What AI’s Capable of in Staged Cloud Attack – Dark Reading
The proof of concept revealed AI-based attacks unfold too fast for human defenders to respond, and that AI evinced more autonomous behavior than expected. – Read More