Threats

Legitimate-Looking Codex Remote UI Steals OpenAI Codex Authentication Tokens

Legitimate-Looking Codex Remote UI Steals OpenAI Codex Authentication Tokens

Tushar Subhra Dutta May 29, 2026

A polished, fully functional npm package has been caught secretly stealing OpenAI Codex authentication tokens from developers...

MicrosoftSystem64 Malware Uses HuggingFace Datasets for Stealthy Data Exfiltration

MicrosoftSystem64 Malware Uses HuggingFace Datasets for Stealthy Data Exfiltration

Tushar Subhra Dutta May 29, 2026

A newly discovered malware called MicrosoftSystem64 has been quietly stealing data from infected computers by routing stolen...

Malicious RVTools Installer Abuses Sectigo Certificate to Bypass SmartScreen Warnings

Malicious RVTools Installer Abuses Sectigo Certificate to Bypass SmartScreen Warnings

Tushar Subhra Dutta May 29, 2026

A trusted tool for VMware administrators has been weaponized. Attackers built a fake version of RVTools, a...

Hackers Use LLM Agent to Move From Marimo RCE to Internal Database in Four Pivots

Hackers Use LLM Agent to Move From Marimo RCE to Internal Database in Four Pivots

Tushar Subhra Dutta May 28, 2026

A new kind of cyberattack is changing how defenders must think about intrusion detection. On May 10,...

VaultJacking Attack Steals Entire Google Password Manager Vault With One Captured PIN Google%20Password%20Manager%20PIN%20Prompt%20Page%20(Source%20-%20Phishu).webp

Google%20Password%20Manager%20PIN%20Prompt%20Page%20(Source%20-%20Phishu).webp

VaultJacking Attack Steals Entire Google Password Manager Vault With One Captured PIN

Tushar Subhra Dutta May 28, 2026

A new phishing technique called VaultJacking has emerged, and it is raising serious alarms across the cybersecurity...

AI-Generated npm Malware Accidentally Exposes Threat Actor’s Private GitHub Token

AI-Generated npm Malware Accidentally Exposes Threat Actor’s Private GitHub Token

Tushar Subhra Dutta May 28, 2026

A new wave of AI-generated malware is hitting the open-source software ecosystem, and this time, the attacker...

Hackers Deploy VIP Keylogger Through Phishing Emails Masquerading as Business Documents VIP%20Keylogger%20Loader%20Phishing%20Campaign%20Names%20(Source%20-%20Splunk).webp

VIP%20Keylogger%20Loader%20Phishing%20Campaign%20Names%20(Source%20-%20Splunk).webp

Hackers Deploy VIP Keylogger Through Phishing Emails Masquerading as Business Documents

Tushar Subhra Dutta May 28, 2026

Hackers are using deceptive phishing emails dressed up as routine business documents to spread a dangerous malware...

ClearFake Uses BSC Testnet Smart Contracts for Takedown-Resistant Command and Control

ClearFake Uses BSC Testnet Smart Contracts for Takedown-Resistant Command and Control

Tushar Subhra Dutta May 28, 2026

A new and dangerously clever malware campaign called ClearFake has been caught using blockchain smart contracts to...

Hackers Use GHOSTYNETWORKS and OMEGATECH to Host JS Malware Infrastructure Two%20phishing%20emails%20from%20the%20campaigns%20launched%20throughout%20March%202026%20(Source%20-%20Intrinsec).webp

Two%20phishing%20emails%20from%20the%20campaigns%20launched%20throughout%20March%202026%20(Source%20-%20Intrinsec).webp

Hackers Use GHOSTYNETWORKS and OMEGATECH to Host JS Malware Infrastructure

Tushar Subhra Dutta May 28, 2026

In March 2026, a wave of malicious spam emails began hitting inboxes across multiple countries and industries....

New PureLogs Variant Uses MsBuild.exe Process Hollowing to Evade Detection

New PureLogs Variant Uses MsBuild.exe Process Hollowing to Evade Detection

Tushar Subhra Dutta May 28, 2026

A new and dangerous version of the PureLogs information-stealing malware has emerged, raising serious concerns across the...

error: Content is protected !!