We are B9 and we are here to make sure YOU are not B-10. We are B9 and we are here to make sure YOU are not B-10.
- Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories
- ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories
- China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa
- FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads
- Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS
- Hackers Spied on a Stock Exchange Executive's Outlook Mailbox for Five Months
- CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog
- DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets
- Pakistan Spies on Afghan Finance Ministry With Xeno RAT
- Attackers Use AI to Automate EDR Evasion Testing
- Tropical Blend: Cyber & Politics Ramp Up Across Latin America
- WhatsApp, Slack Notifications Could Hijack Google Gemini on Android
- Cyber Insurance Rates Are Dropping, but Exclusions Widen
- Coding Gaffe Exposes Microsoft 365 Accounts to Widespread Takeover
- Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
- Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag
- Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)
- One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens
- Malicious Notifications Could Trick Google Gemini Users
- Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
- Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore
- Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes
- Global Stock Exchange Hit by Monthslong Email Campaign
- New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
- Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content
