Software supply chain attacks continue to expand in scale and sophistication, with attackers increasingly targeting developer ecosystems and trusted code repositories to spread malware rapidly. New reporting from GBHackers reveals that Megalodon has infected more than 5,500 GitHub repositories, highlighting the growing risks associated with compromised code distribution and malicious repository propagation. By abusing trusted
Read More
Security researchers have disclosed what is being described as the first public macOS kernel exploit, highlighting a dangerous shift toward attacks targeting the deepest layers of operating system functionality. Unlike conventional malware that operates within applications or user space, kernel exploits target the core of the operating system itself. This gives attackers the potential to
Read More
Ransomware attacks continue to evolve from isolated malware incidents into highly coordinated intrusion operations. Modern ransomware groups now combine credential theft, lateral movement, data exfiltration, and operational disruption to maximize impact on victim organizations. New reporting from Cybersecurity Dive highlights a new agreement involving Canvas focused on strengthening defenses against ransomware actors and cyber extortion
Read More
Threat actors are increasingly abusing trusted advertising platforms and AI-related branding to distribute malware. By impersonating legitimate software downloads via search ads, attackers can trick users into installing malicious payloads while appearing credible. New reporting from Cybersecurity News reveals a macOS malware campaign leveraging fake Claude AI advertisements in Google Search results to deliver malicious
Read More