Cybersecurity News, Analysis & Insights — Threat Digest

Security Tools ⚠️ Warning

Mandiant's AuraInspector Reveals Salesforce's Sneaky Data Leaks — And How to Plug Them

Salesforce admins thought sharing rules covered them. Mandiant's new AuraInspector proves otherwise — scanning for data exposures that hackers exploit daily.

4 min read 1 month, 3 weeks ago

Threat Intelligence ⚠️ Warning

Cookies Unlocked: How Hackers Weaponize HTTP Cookies for Stealthy PHP Webshells

Server logs clean. Traffic normal. But your Linux host's quietly executing attacker commands — all triggered by innocent-looking cookies. Here's the data-driven takedown of this slick PHP webshell evasion.

5 min read 1 month, 3 weeks ago

Security Tools ⚠️ Warning

Agentic SOC: Security's Shiny New Buzzword?

SOCs are broken. Enter the agentic SOC—or so the pitch goes. But is this AI savior real, or recycled hype?

4 min read 1 month, 3 weeks ago

Vulnerabilities & CVEs ⚠️ Warning

WinRAR's CVE-2025-8088 Draws Russian, Chinese Hackers Long After Patch

Hackers from Russia and China are still milking a patched WinRAR vulnerability, CVE-2025-8088, to sneak malware past defenses. It's a stark reminder: patches mean nothing if you don't apply them.

4 min read 1 month, 3 weeks ago

Nation-State Threats ⚠️ Warning

North Korea's UNC1069 Pulls Off Crypto Heist with Deepfake Zoom and Seven Malware Strains

Picture this: a trusted crypto exec's Telegram pings you for a quick Zoom. It's a deepfake CEO glitching audio to push malware commands. UNC1069 just made crypto's worst nightmare real.

4 min read 1 month, 3 weeks ago

Nation-State Threats ⚠️ Warning

Google and Mandiant Torch GRIDTIDE: Shutting Down China's Sneaky Global Spy Net

Picture this: Chinese hackers burrowing into telecoms worldwide, siphoning calls and secrets via innocent-looking Google Sheets. Google and Mandiant yanked the plug—hard. Your digital life just got a shield upgrade.

4 min read 1 month, 3 weeks ago

Security Tools ⚠️ Warning

Metasploit's March 2026 Update Arms Attackers Against Printers, Dev Spaces, and Email Gateways

Picture your local store's receipt printer spitting out garbage — or worse, attacker commands. Metasploit's freshest update just made that nightmare easier, alongside RCE hits on dev tools and email appliances.

5 min read 1 month, 3 weeks ago

Vulnerabilities & CVEs ⚠️ Warning

CVE-2026-3055: Citrix NetScaler's SAML Memory Leak Goes Wild, Echoing CitrixBleed Nightmare

Just when Citrix fans breathed easy post-Bleed, CVE-2026-3055 rips open NetScaler memory via SAML setups. It's live in exploits, CISA-KEV listed, Metasploit-ready—history repeating fast.

4 min read 1 month, 3 weeks ago

Threat Intelligence ⚠️ Warning

Initial Access Brokers Ditch Small Fry for Fat Corporate Wallets

Hackers aren't spraying and praying anymore. They're laser-focused on high-rollers, charging premium for the keys to your kingdom.

5 min read 1 month, 3 weeks ago

Threat Intelligence ⚠️ Warning

Cloning Google's AI: How Hackers Steal Frontier Models to Supercharge Attacks

Imagine phishing emails that read your mind, malware that writes itself on the fly. Google's latest GTIG AI Threat Tracker shows threat actors distilling top AI models to make it real.

5 min read 1 month, 3 weeks ago

Threat Intelligence ⚠️ Warning

AI: From Cybercriminal Sidekick to Attack Factory Floor

Picture a hacker's dimly lit room, screens flickering as AI spits out hyper-personalized phishing emails in seconds. Threat actor abuse of AI isn't hype—it's turning old-school scams into precision strikes.

4 min read 1 month, 3 weeks ago

Vulnerabilities & CVEs ⚠️ Warning

Anthropic's Project Glasswing Just Unleashed a Vulnerability Monster

Claude Mythos Preview dug up a 27-year-old OpenBSD flaw like it was yesterday's trash. Project Glasswing isn't hype—it's the radar pinging a storm defenders aren't ready for.

5 min read 1 month, 3 weeks ago