We are B9 and we are here to make sure YOU are not B-10. We are B9 and we are here to make sure YOU are not B-10.
- Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline
- Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization
- Sweeping Credential-Harvesting Heist Compromises +30K Fortinet Devices
- The Top 10 Attack Surface Exposures in 2026
- Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
- UK Social Media Ban for Minors Has Privacy Experts Worried
- 144 Mastra npm Packages Compromised via Hijacked Contributor Account
- CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution
- Fileless Phantom Stealer Targets Browser Credentials
- Security Community Slams US Ban on Exporting Mythos, Fable
- Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting
- SprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detection
- ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures
- Rokarolla Android Trojan Levels Up to Full Device Control, Persistence
- 'Lorem Ipsum' Malware Pivots to ClickFix Delivery
- New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds
- Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive
- Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week
- China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth
- Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware
- Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw
- CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation
- Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails
- North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels
- HTTP/2 Bomb Attacks Put Telcos, Healthcare Orgs at Risk
