Laura French

Trigona ransomware attackers use novel tool for data exfiltration

• data-security
• ransomware
• threat-intelligence
• threat-management

Trigona ransomware attackers use novel tool for data exfiltration

Laura French April 24, 2026

The uploader_client.exe command-line utility allows for rapid and granular data theft.

Read More Read more about Trigona ransomware attackers use novel tool for data exfiltration

Namastex npm packages compromised in ‘CanisterWorm’ supply chain attack

• aiml
• identity
• malware
• supply-chain
• threat-intelligence

Namastex npm packages compromised in ‘CanisterWorm’ supply chain attack

Laura French April 23, 2026

A self-propagating script was added to @automagik/genie and @pgserve packages.

Read More Read more about Namastex npm packages compromised in ‘CanisterWorm’ supply chain attack

Flaw in Microsoft-owned GitHub repository allowed RCE via issue submission

• application-security
• devsecops
• supply-chain
• vulnerability-management

Flaw in Microsoft-owned GitHub repository allowed RCE via issue submission

Laura French April 22, 2026

Attackers could have extracted a GITHUB_TOKEN secret, potentially enabling unauthorized changes.

Read More Read more about Flaw in Microsoft-owned GitHub repository allowed RCE via issue submission

GreyNoise finds attacker activity surges before vulnerability disclosures

• network-security
• patchconfiguration-management
• threat-intelligence
• vulnerability-management

GreyNoise finds attacker activity surges before vulnerability disclosures

Laura French April 21, 2026

The median lead time between activity surge and advisory publication was 11 days.

Read More Read more about GreyNoise finds attacker activity surges before vulnerability disclosures

GitHub user attachments abused to spread novel infostealer

• data-security
• malware
• ransomware
• threat-intelligence
• threat-management

GitHub user attachments abused to spread novel infostealer

Laura French April 17, 2026

The stealthy CGrabber malware targets a wide array of apps, browsers and extensions.

Read More Read more about GitHub user attachments abused to spread novel infostealer

Bot traffic makes up 49% of online activity, but 99% of bots unwanted

• aiml
• application-security
• threat-intelligence
• threat-management

Bot traffic makes up 49% of online activity, but 99% of bots unwanted

Laura French April 17, 2026

Researchers warn malicious bots may spoof trusted user agents to disguise their intent.

Read More Read more about Bot traffic makes up 49% of online activity, but 99% of bots unwanted

Nginx-ui MCP missing authentication flaw actively exploited

• aiml
• identity
• patchconfiguration-management
• vulnerability-management

Nginx-ui MCP missing authentication flaw actively exploited

Laura French April 16, 2026

Attackers on the same network can alter nginx configurations, leading to complete takeover.

Read More Read more about Nginx-ui MCP missing authentication flaw actively exploited

Black Basta-linked attacks target executives via Teams phishing

• application-security
• phishing
• ransomware
• threat-intelligence
• threat-management

Black Basta-linked attacks target executives via Teams phishing

Laura French April 15, 2026

Suspected former Black Basta affiliates impersonate help desks to deploy RMM software.

Read More Read more about Black Basta-linked attacks target executives via Teams phishing

OpenAI’s macOS app-signing process hit by axios supply chain attack

• aiml
• application-security
• generative-ai
• supply-chain

OpenAI’s macOS app-signing process hit by axios supply chain attack

Laura French April 13, 2026

The company is revoking and rotating certificates “out of an abundance of caution.”

Read More Read more about OpenAI’s macOS app-signing process hit by axios supply chain attack

AI browser extensions more likely to have known vulnerabilities, report says

• aiml
• data-security
• risk-assessmentsmanagement

AI browser extensions more likely to have known vulnerabilities, report says

Laura French April 13, 2026

AI extensions are also more likely to have cookie, scripting and tabs permissions.

Read More Read more about AI browser extensions more likely to have known vulnerabilities, report says