Microsoft

StealC and Amadey: Breaking down infostealers and the cybercrime services that deliver them

On June 24, 2026, Microsoft’s Digital Crimes Unit (DCU) facilitated the takedown, suspension, and blocking of domains that ...
The Hacker News

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 ...

ThreatsDay Bulletin covers AI abuse, poisoned packages, phishing, macOS attacks, SD-WAN flaws, scams, and supply-chain ...
GitHub

Xiaomi Secret Album Decryptor

A security research Android application that demonstrates how MIUI's hidden album encryption works and allows users to recover their own hidden photos and videos ...
latesthackingnews.com

LiteLLM Vulnerability Chain: What Security Teams Running AI Gateways Need to Do Now

A three-CVE chain lets any default LiteLLM user escalate to admin and get a shell on the gateway server. A separate RCE is ...
techtimes

Agentic AI Security Alarm at Infosecurity Europe: Free LLM Now Powers Adaptive Worm

The final bell rang Thursday at Infosecurity Europe 2026 — the 31st edition of Europe's largest annual cybersecurity gathering — as the industry's most uncomfortable thesis moved from theoretical to ...
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the ...
GitHub

password-generator-python

A powerful and flexible Python-based tool for generating high-quality password dictionaries for penetration testing and cybersecurity research. This project allows users to create custom wordlists ...