12h ago · 2 min read · The attack surface targeted by Iranian-linked hackers in cyberattacks against U.S. critical infrastructure networks includes thousands of Internet-exposed programmable logic controllers (PLCs) manufactured by Rockwell Automation. According to a issu...
Join discussion
12h ago · 2 min read · OpenAI has rolled out a new Pro subscription that costs $100 and is in line with Claude's pricing, which also has a $100 subscription, in addition to the $200 Max monthly plan. Until now, OpenAI has offered three subscription tiers. First is Go, whic...
Join discussion
1d ago · 16 min read · Executive Summary GlassWorm is one of the most sophisticated and dangerous software supply chain attacks ever recorded against the developer ecosystem. First identified in October 2025 and still activ
Join discussion
16h ago · 6 min read · Originally published on satyamrastogi.com Telehealth platform Hims suffered a breach exposing intimate PHI including sexual dysfunction, weight loss medication usage, and dermatology treatments. Attackers exploit this data for extortion, insurance f...
Join discussion
1d ago · 3 min read · Hackers gained access to an API for the CPUID project and changed the download links on the official website to serve malicious executables for the popular CPU-Z and HWMonitor tools. The two utilities have millions of users who rely on them for track...
Join discussion
1d ago · 19 min read · 1. Executive Summary In early April 2026, FortiGuard Labs disclosed an attack campaign linked to the Democratic People's Republic of Korea (DPRK), primarily targeting organizations in South Korea. Thi
Join discussion
1d ago · 9 min read · Summary of the campaign A financially motivated hacking group linked to China—Storm-1175—is raising alarms at the highest level by incorporating Zero-day vulnerability exploitation (rare among ransomw
Join discussion
1d ago · 15 min read · Executive Summary On March 24, 2026, threat group TeamPCP successfully pushed two backdoored versions of the Python library LiteLLM (v1.82.7 and v1.82.8) to PyPI — a package registry serving over 95 m
Join discussion
1d ago · 6 min read · * Author: Saeed Abbasi, Senior Manager, Threat Research Unit, Qualys With Time-to-Exploit now at negative seven days and autonomous AI agents accelerating threats, the data no longer supports incremental improvement. The architecture of defense must ...
Join discussion
1d ago · 7 min read · Originally published on satyamrastogi.com LucidRook, a Lua-based malware, targets NGOs and universities via spear-phishing. Analysis of attack chains, obfuscation techniques, and defensive strategies for organizations managing sensitive geopolitical...
Join discussion
