ICYMI: 2025-11-27
Latest Headlines
Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan
Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update
Webinar: Learn to Spot Risks and Patch Safely with Community-Maintained Tools
Gainsight Expands Impacted Customer List Following Salesforce Security Alert
Over 390 Abandoned iCalendar Sync Domains Could Expose ~4 Million Devices to Security Risks
One Identity Safeguard Named a Visionary in the 2025 Gartner Magic Quadrant for PAM
Quttera Launches “Evidence-as-Code” API to Automate Security Compliance for SOC 2 and PCI DSS v4.0V
Shai Hulud v2 Exploits GitHub Actions Workflows as Attack Vector to Steal Secrets
Qilin RaaS Exposed 1 Million Files and 2 TB of Data Linked to Korean MSP Breach
Dead Man’s Switch – Widespread npm Supply Chain Attack Driving Malware Attacks
NVIDIA DGX Spark Vulnerabilities Let Attackers Execute Malicious Code and DoS Attacks
KawaiiGPT – Free WormGPT Variant Leveraging DeepSeek, Gemini, and Kimi-K2 AI Models
North Korean Hackers Exploiting npm, GitHub, and Vercel to Deliver OtterCookie Malware
OpenAI discloses API customer data breach via Mixpanel vendor hack
– MTZ