Threat Digest

What to Watch This Week: Ransomware Reloads, Vulns Ignite, Nation-States Strike

Last week's threats forecast ransomware hitting factories/hospitals harder, exploits racing for Cisco/ShareFile/React flaws, and nation-states amplifying via QR codes and AI fraud. Vigilance on patches, segmentation, and vetting is key as trends accelerate.

Threat Digest 1 min read 2 days, 5 hours ago

443 articles

4,829 reads

Latest Stories

Dashboard of NEXUS Listener showing stolen credentials from breached Next.js hosts

Threat Intelligence ⚠️ Warning

766 Next.js Servers Gutted by CVE-2025-55182: Hackers Snag Keys, Secrets, and Your Whole Damn Infra Map

Next.js promised smoothly full-stack bliss. Then CVE-2025-55182 let hackers raid 766 hosts, grabbing credentials and mapping entire infrastructures for the dark web auction.

4 min read 4 days, 13 hours ago

Compliance & Policy ⚠️ Warning

Mercor's 4TB Nightmare: LiteLLM's Supply Chain Poison Reaches AI Hiring Giant

LiteLLM lurks in 36% of cloud environments — and now it's bitten Mercor hard. Extortionists boast 4TB of pilfered data, from video interviews to VPN creds.

3 min read 4 days, 13 hours ago

Fake CAPTCHA page dropping Infiniti Stealer payload on macOS Terminal

Data Breaches ⚠️ Warning

Infiniti Stealer: macOS's Sneaky New Thief via Fake CAPTCHA and Terminal Tricks

Imagine pasting a 'CAPTCHA fix' into Terminal, only to hand your Mac's keys to hackers. Infiniti Stealer is here, blending old-school tricks with cutting-edge compilation to plunder browsers, wallets, and Keychain.

3 min read 4 days, 13 hours ago

Diagram of Axios npm compromise injecting plain-crypto-js RAT across Windows, macOS, and Linux

Security Tools ⚠️ Warning

Inside the Axios Hijack: How DPRK RATs Slipped into Dev Workflows Worldwide

Your next npm install could drop a North Korean RAT on your machine. That's the brutal reality for devs worldwide after the Axios supply chain attack—and it's already hit finance, tech, and healthcare.

4 min read 4 days, 13 hours ago

Screenshot of .NET infostealer code calling OpenAI GPT-3.5 API endpoints

Cloud Security ⚠️ Warning

AI Malware: All Sizzle, No Real Steak Yet

Your browser cookies are still at risk from basic infostealers, but the AI twist? It's more theater than terror. Here's why the hype around AI-powered malware doesn't match reality—for now.

4 min read 4 days, 13 hours ago

Intrusion chain diagram showing AppleChris deployment and C2 communication in CL-STA-1087 attack

Compliance & Policy ⚠️ Warning

China's Silent Siege on Southeast Asia's Militaries

Ghostly hackers from China have burrowed into Southeast Asian military networks for years. Patient, precise, and packing custom tools—they're not smashing and grabbing; they're mapping the future battlefield.

3 min read 4 days, 13 hours ago

Alert graphic showing compromised Axios NPM package with North Korean flag overlay

Vulnerabilities & CVEs ⚠️ Warning

Axios NPM Breach: North Korea's Precision Strike on JS Devs

What if your most trusted HTTP client just became a backdoor? The Axios NPM package was compromised this week in a surgical hit, with signs pointing to North Korean actors.

3 min read 4 days, 13 hours ago

Hasbro headquarters with digital breach warning overlay and locked systems icon

Security Tools ⚠️ Warning

Hasbro's Breach: Weeks of Chaos Ahead

Hasbro's not playing games anymore. A cyber attack has them pulling systems offline, with fixes dragging on for weeks.

4 min read 4 days, 13 hours ago

Diagram showing chunked data packets bypassing firewall App-ID detection during exfiltration

Vulnerabilities & CVEs ⚠️ Warning

Hackers Are Chunking Data to Dodge Your Next-Gen Firewall's App-ID Trap

Ever wonder why your shiny next-gen firewall lets the first 5KB of hacker traffic sail through? It's not a bug—it's the feature killing your data exfiltration defenses.

3 min read 4 days, 13 hours ago

macOS Terminal app displaying ClickFix malware paste warning prompt

Vulnerabilities & CVEs 📈 Bullish

Apple's Terminal Lifeline: macOS Now Blocks ClickFix Paste Bombs Before They Explode

Picture this: a frantic pop-up screams your Mac's infected, urging you to paste a 'fix' into Terminal. Now, macOS slams the brakes. Apple's latest shield could save millions from ClickFix chaos.

4 min read 4 days, 13 hours ago

CISO Frederick Lee discussing AI deployment in cybersecurity operations room

Data Breaches 📊 Objective

CISOs Bet Big on AI Security Tools—But Who's Cashing In?

Forget the boardroom pitches—your IT team's drowning in alerts, and AI might finally lighten the load. But after 20 years watching Valley hype cycles, I'm asking: is this different, or just another vendor gold rush?

3 min read 4 days, 13 hours ago

Bar chart of prompt fuzzing evasion rates across open and closed LLMs from Unit 42 research

Threat Intelligence ⚠️ Warning

Prompt Fuzzing Tears Through LLM Guardrails — Evasion Hits Highs Across Open and Closed Models

Evasion rates spiked into high levels for key model combos. Turns out, five years of safety tweaks haven't hardened LLMs against scalable fuzzing attacks.

3 min read 4 days, 13 hours ago