Telnyx package latest hit in PyPI supply-chain compromise
The Telnyx Python SDK on PyPI has been compromised by TeamPCP, a group linked to the Trivy supply-chain attack. The malicious package versions 4.87.1 and 4.87.2 contain a multi-stage infostealer.
15-Year-Old strongSwan Flaw Lets Attackers Crash VPNs via Integer Underflow
A critical vulnerability, CVE-2026-25075, has been identified in strongSwan's EAP-TTLS plugin, affecting versions 4.5.0 to 6.0.4. This flaw allows attackers to crash VPN services through an integer underflow, leading to massive memory corruption.
Cybercriminals say they hacked the city of Meriden, CT and stole data
A ransomware group named Inc has claimed responsibility for a cyberattack on the city of Meriden, CT. The attack, reported by city officials on February 17, has caused significant disruptions, with services still being restored over a month later.
New RoadK1ll WebSocket implant used to pivot on breached networks
RoadK1ll is a newly identified Node.js implant that enables threat actors to pivot within breached networks. It blends into normal network activity and does not rely on an inbound listener, using a custom WebSocket protocol for communication.
An AI-powered phishing campaign has compromised hundreds of organizations
An AI-powered phishing campaign has compromised 344 organizations across sectors such as construction, law, healthcare, and government. The campaign exploits Microsoft cloud accounts using OAuth tokens.
Hacker walks away with $24.5 million after breaching Resolv DeFi platform
A cyberattack on the Resolv DeFi platform resulted in the unauthorized creation of $80 million worth of USR stablecoin, which was exchanged for 11,408 ETH, valued at $24.5 million.
Mazda discloses security breach exposing employee and partner data
Mazda Motor Corporation has disclosed a security breach involving a system related to warehouse operations for parts procured from Thailand. The breach exposed sensitive data of employees and business partners.
Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23
Cybersecurity researchers have disclosed a critical security flaw impacting the GNU InetUtils telnet daemon (telnetd) that could be exploited by an unauthenticated remote attacker to execute arbitrary code with elevated privileges.
Europe sanctions Chinese and Iranian firms for cyberattacks
The EU sanctioned three Chinese and Iranian companies for cyberattacks targeting devices and critical infrastructure. One company provided technical and material support that led to hacking more than 65,000 devices in six EU states.
GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX
The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extensions on GitHub, npm, and VSCode/OpenVSX extensions.
Defend Against Threats with Cyber Fusion
Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.
Learn More
Trending Tags
