FISA

Security researchers disclosed a new software supply chain campaign attributed to the North Korean threat actor Lazarus Group. The operation targets software developers through malicious packages uploaded to the npm registry, one of the world's largest repositories for JavaScript software components. Unlike traditional typosquatting attacks that rely on simple spelling mistakes, this campaign uses a more sophisticated technique known as brandjacking, where malicious packages are intentionally designed to appear related to legitimate and widely trusted open-source projects. According to research conducted by Sonatype, dozens of malicious packages were identified as part of the campaign, with some accumulating hundreds of downloads before detection and removal. The attackers created package names that appeared to be extensions, companion tools, utilities, or ecosystem components associated with popular projects such as React, Express, Webpack, Chai, JWT libraries, and Buffer. By usi...

Threat actors are actively exploiting a critical remote code execution vulnerability in Everest Forms Pro , a WordPress plugin used by approximately 4,000 websites. The flaw, tracked as CVE-2026-3300 with a near-maximum CVSS score of 9.8, allows completely unauthenticated attackers to execute arbitrary PHP code on affected servers and take full control of vulnerable sites. What the Vulnerability Does The root cause of the flaw lies in the Calculation Addon's process_filter() function, which takes user-submitted form field values and concatenates them directly into a PHP code string before passing it to PHP's eval() function without proper escaping. The sanitization function applied to user input does not strip single quotes or other PHP-specific characters, meaning an attacker can simply submit a crafted value through any standard string-type form field including text, email, URL, select, or radio fields on any form that uses the "Complex Calculation" feature. T...

Cybersecurity researchers at OX Security have uncovered a malicious package on the npm registry that specifically targets files stored in Anthropic's Claude AI tool directory. The campaign, dubbed Malware-Slop , centers around a package named mouse5212-super-formatter and represents a growing trend of AI-focused supply chain attacks carried out with low operational sophistication, but real consequences. What the Package Does On the surface, the package presents itself as an internal "archive deployment sync" utility, claiming to validate GitHub repositories and send network diagnostic information. In reality, it is a data theft tool with a very specific target: the /mnt/user-data directory, the dedicated folder that Claude AI uses to handle file uploads and outputs in the background. The malicious behavior is triggered during the postinstall stage, meaning it executes automatically the moment a developer installs the package. At that point, the malware authenticates...

  Cybersecurity researchers at Qualys have uncovered a critical privilege escalation vulnerability in the Linux kernel that went undetected for nine years. Tracked as CVE-2026-46333 and codenamed "ssh-keysign-pwn" , the flaw was quietly introduced into the kernel back in November 2016 and affects default installations of several of the most widely used Linux distributions, including Debian, Ubuntu, and Fedora. What the Flaw Does The vulnerability stems from improper privilege management in the kernel's __ ptrace_may_access() function a core component that governs how one process can inspect or control another. An unprivileged local user who exploits this flaw can access highly sensitive files and escalate their privileges all the way to root, without requiring any special system configuration. In practice, a successful attack can expose the contents of /etc/shadow  the file containing hashed user passwords as well as private SSH host keys stored under /etc/ssh/ . Bey...

Cybersecurity researchers identified a large-scale malware campaign targeting job seekers through fake online interview platforms. The operation distributes a credential-stealing trojan known as JobStealer, which is disguised as legitimate video conferencing software for remote interviews. The campaign specifically targets Windows and macOS systems and focuses heavily on stealing browser credentials, cryptocurrency wallet data, authentication tokens, and sensitive personal information. The attack demonstrates how threat actors are increasingly exploiting remote work culture and employment-related social engineering to compromise victims. The attack begins with threat actors contacting victims through fake recruitment offers and interview invitations. Victims are directed to professionally designed websites pretending to host online interview platforms. Researchers identified multiple fake platform names such as MeetLab, Meetix, Juseo, and Carolla, while some sites directly impersonate...

Cybersecurity researchers uncovered an active malware campaign targeting software developers through fake installation pages impersonating Anthropic’s Claude Code platform. The operation relies heavily on social engineering and malicious search advertisements to trick victims into downloading or executing malware disguised as legitimate AI development tooling. The campaign demonstrates a growing trend where attackers exploit the popularity and rapid adoption of AI-assisted coding tools to compromise developer environments and steal sensitive browser data. The attack typically begins when a developer searches online for terms such as “install Claude Code” or “Claude Code CLI.” Attackers purchase sponsored search advertisements that appear above legitimate results, redirecting victims to convincing lookalike websites that closely mimic official Claude documentation pages. These fake pages replicate branding, layouts, installation guides, and command-line instructions in order to appear ...

  Cybersecurity researchers disclosed a critical Linux kernel vulnerability chain known as “Dirty Frag,” a local privilege escalation exploit capable of granting root access across most major Linux distributions released since 2017. The vulnerability quickly gained attention due to its high reliability, the public release of proof-of-concept exploit code, and the absence of immediate patches at the time of disclosure. Security analysts have compared Dirty Frag to previous high-profile Linux vulnerabilities such as Dirty Pipe and Copy Fail because of its ability to manipulate kernel memory structures and achieve deterministic privilege escalation. Dirty Frag is not a single vulnerability but a chained exploitation technique involving weaknesses in Linux kernel networking components related to xfrm-ESP and RxRPC functionality. By abusing flaws in the page cache handling logic, attackers can modify protected memory-backed files without appropriate permissions. This enables unprivilege...

Cybersecurity researchers reported a serious abuse of the digital certificate issuance process involving DigiCert, one of the world’s largest certificate authorities. Threat actors successfully obtained legitimate code-signing certificates and used them to digitally sign malicious software, allowing malware samples to appear trusted by operating systems and security solutions. The incident highlights the growing misuse of trusted digital infrastructure in modern cyberattacks and demonstrates how attackers increasingly exploit weaknesses in verification and identity validation processes rather than relying solely on technical vulnerabilities. Digital certificates are designed to establish trust between software publishers, operating systems, and users. When software is signed using a valid certificate, security mechanisms such as Microsoft SmartScreen and antivirus products are more likely to treat the application as legitimate. By obtaining valid certificates, attackers can bypass secu...

Cybersecurity researchers have uncovered a critical vulnerability in Ollama, one of the most widely used platforms for running large language models locally, that could allow a remote, unauthenticated attacker to read and steal the server's entire process memory. Tracked as CVE-2026-7482 and dubbed "Bleeding Llama" by the researchers at Cyera who discovered it, the flaw carries a CVSS score of 9.1 and is estimated to affect more than 300,000 publicly exposed servers worldwide. What Is Ollama? Ollama is a popular open-source framework that enables developers and organizations to run AI language models locally rather than relying on cloud services. The project has over 171,000 stars on GitHub, making it one of the most widely adopted tools in the self-hosted AI space. How the Vulnerability Works The flaw is an out-of-bounds heap read located in Ollama's GGUF model loader specifically in a function called WriteTo() within the model creation pipeline. GGUF is the sta...

Security researchers have disclosed a total of twelve vulnerabilities in vm2 , a widely used open-source Node.js library, several of which carry the maximum possible CVSS score of 10.0. All affected versions up to and including 3.11.1 are impacted, and users are strongly urged to upgrade to the newly released version 3.11.2 immediately. What Is vm2? vm2 is a Node.js sandbox library designed to safely execute untrusted JavaScript code in an isolated environment, preventing that code from accessing the underlying host system. It is commonly used in platforms that need to run user-supplied or third-party scripts without exposing the server to risk. The discovery of these flaws fundamentally undermines that security guarantee. What the Vulnerabilities Allow All twelve flaws share a common and critical outcome: they enable sandbox escape, meaning an attacker can break out of the isolated environment and execute arbitrary code directly on the host machine. Several of the vulnerabilities...

A high-severity vulnerability was disclosed in the AI-powered development environment Cursor, exposing developers to arbitrary code execution through malicious Git repositories. The flaw, tracked as CVE-2026-26268 with a severity score of 8.1, demonstrates how modern AI-assisted development tools can introduce new attack surfaces when combined with traditional software mechanisms such as version control systems. The vulnerability allows attackers to execute code on a developer’s machine simply by convincing them to clone a specially crafted repository. This significantly lowers the barrier for exploitation, as cloning repositories is a routine and trusted operation in software development workflows. Once the repository is cloned, hidden malicious logic embedded within Git configurations can be triggered automatically without requiring additional user interaction. At the core of the issue is the interaction between Cursor’s AI agent and Git’s built-in features, particularly Git hooks....

Cybersecurity authorities including CISA and the UK’s National Cyber Security Centre disclosed a highly sophisticated malware campaign involving a custom Linux-based backdoor known as FIRESTARTER. The malware specifically targets Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) devices, which are widely deployed as critical network perimeter defenses in enterprise and government environments. The discovery followed a forensic investigation into a breach affecting a U.S. federal agency, revealing that attackers had maintained long-term access to firewall infrastructure even after security patches were applied. The FIRESTARTER backdoor is designed to provide attackers with persistent remote access and full control over compromised devices. Unlike typical malware that resides on endpoints, this implant operates directly within the firewall system itself, effectively turning a core security control into an attack platform. By embedding within the LINA process, wh...

  Microsoft has updated its security advisory to confirm that a recently patched Windows Shell vulnerability  CVE-2026-32202  has been actively exploited in the wild. The flaw, which carries a CVSS score of 4.3, was originally addressed as part of Microsoft's April 2026 Patch Tuesday update, but the company quietly revised its advisory on April 27 after acknowledging that the original exploitability assessment had been published with incorrect information. What Does the Vulnerability Do? CVE-2026-32202 is a spoofing vulnerability rooted in a protection mechanism failure within Windows Shell. An attacker exploiting it over a network can access sensitive information on a victim's machine. To trigger the flaw, the attacker must send the victim a malicious file that the victim then opens. The impact is limited to data exposure the attacker cannot modify data or affect system availability, but in the context of how it is being chained with other vulnerabilities, the conseque...

BitSight published an analysis focused on how the emergence of advanced AI systems such as Claude Mythos is reshaping cybersecurity priorities, particularly in the area of cyber risk management and resilience. Rather than emphasizing traditional defensive controls or vulnerability remediation alone, the report highlights the growing importance of external visibility, third-party risk monitoring, and continuous risk scoring as core components of modern security strategy. The post-Mythos landscape is defined not just by faster attacks, but by the increasing difficulty organizations face in understanding and managing their total exposure across complex digital ecosystems. The analysis emphasizes that organizations no longer operate within clearly defined perimeters. Instead, they exist within an extended attack surface that includes vendors, partners, suppliers, and cloud services. BitSight identifies this external exposure as one of the most critical blind spots in cybersecurity today. A...

A cybersecurity-focused webinar titled “Mythos Reality Check: Beating Automated Exploitation at AI Speed” highlighted a fundamental shift in the threat landscape driven by artificial intelligence. The session emphasized that modern attackers are increasingly leveraging AI to automate vulnerability discovery and exploitation at unprecedented speed, fundamentally changing how organizations must approach security. The concept introduced as the “collapsing exploit window” describes the rapidly shrinking time between the discovery of a vulnerability and its active exploitation in the wild. The webinar underscores that traditional security practices, particularly those relying on manual vulnerability management and delayed patching cycles, are no longer sufficient. In the past, organizations had a measurable window of time to identify, prioritize, and remediate vulnerabilities before attackers could weaponize them. However, with AI-driven tools capable of scanning, identifying, and exploit...

Google-owned Mandiant has published new research exposing a previously undocumented threat group called UNC6692 , which is carrying out sophisticated social engineering attacks through Microsoft Teams to deploy a custom-built malware suite against corporate targets. The Attack Begins With an Email Flood The operation starts by overwhelming the victim's inbox with a massive wave of spam emails, creating a sense of panic and urgency. Shortly after, the attacker reaches out to the same victim over Microsoft Teams, impersonating an IT helpdesk employee from outside the organization and offering to resolve the email issue. The victim is then manipulated into clicking a phishing link shared via the Teams chat disguised as a "Mailbox Repair and Sync Utility v2.1.5", which triggers the download of a malicious AutoHotkey script from an attacker-controlled Amazon S3 bucket. This tactic of combining inbox flooding with Teams-based helpdesk impersonation has been a hallmark of for...