{
    "version": "https:\/\/jsonfeed.org\/version\/1",
    "title": "Human Factor Blog",
    "_rss_description": "how human behavior affects security",
    "_rss_language": "en",
    "_itunes_email": "",
    "_itunes_categories_xml": "",
    "_itunes_image": "",
    "_itunes_explicit": "",
    "home_page_url": "https:\/\/blog.humanfactor.ai\/",
    "feed_url": "https:\/\/blog.humanfactor.ai\/json\/",
    "icon": "https:\/\/blog.humanfactor.ai\/user\/userpic@2x.jpg?1699895803",
    "author": {
        "name": "Human Factor AI",
        "url": "https:\/\/blog.humanfactor.ai\/",
        "avatar": "https:\/\/blog.humanfactor.ai\/user\/userpic@2x.jpg?1699895803"
    },
    "items": [
        {
            "id": "256",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-191\/",
            "title": "Programmer’s Digest #191",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-44.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">06\/24\/2026-07\/01\/2026 Linux Kernel Flaw, Langflow RCE Exploited, Hijacked npm and Go Packages And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/securityaffairs.com\/194338\/uncategorized\/dirtyclone-fourth-linux-kernel-flaw-in-six-weeks-escalates-to-root.html\">DirtyClone: Fourth Linux Kernel Flaw in Six Weeks Escalates to Root<\/a><\/h2>\n<p>JFrog Security Research published a working exploit for CVE-2026-43503 (CVSS 8.8), a Linux kernel privilege escalation dubbed DirtyClone—the fourth in the DirtyFrag family. All four share the same flaw: file-backed memory gets treated as writable network packet data instead of being copied. An attacker loads a privileged binary like \/usr\/bin\/su into memory, forces the kernel to clone it through a loopback IPsec tunnel, and overwrites its authentication logic—granting root with no disk changes or audit trail. The exploit needs CAP_NET_ADMIN, reachable on Debian and Fedora via default-enabled unprivileged namespaces; Ubuntu 24.04+ blocks this path via AppArmor.<\/p>\n<p>Each prior DirtyFrag patch closed one code path while leaving others exposed, since the shared-frag flag wasn’t enforced everywhere. A broader fix merged May 21, with Linux v7.1-rc5 as the first patched release; Ubuntu, Debian, and SUSE have advisories out. If patching isn’t immediate, disabling unprivileged user namespaces or blacklisting esp4\/esp6\/rxrpc modules reduces exposure, though neither is a real fix.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/thehackernews.com\/2026\/06\/langflow-rce-exploited-to-deploy-monero.html\">Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints<\/a><\/h2>\n<p>Attackers are exploiting CVE-2026-33017 (CVSS 9.3), an unauthenticated RCE flaw in Langflow, to deploy a Monero cryptominer, Trend Micro reports. Observed between March 27 and April 15, 2026, the attack runs a Python script via the exposed API to fetch a Go-based binary called “lambsys.” The malware kills rival miners (Kinsing, WatchDog, Rocke, Outlaw), deletes their wallets, disables security tools like AppArmor, SELinux, and iptables, wipes logs, and sets up cron persistence. It spreads via reused SSH keys and manipulates file immutability attributes to protect its changes. Finally, it downloads a custom XMRig miner and checks the victim’s IP\/location for pool selection and geo-fencing.<\/p>\n<p>An earlier binary version dates to May 2024, suggesting over two years of development. This follows other Langflow exploits, including 2025’s Flodrix botnet campaign, underscoring how exposed AI infrastructure is becoming a new entry point for commodity attackers.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/www.securityweek.com\/exploitation-of-recent-oracle-e-business-suite-vulnerability-begins\/\">Exploitation of Recent Oracle E-Business Suite Vulnerability Begins<\/a><\/h2>\n<p>Threat intelligence firm Defused warns that attackers have begun exploiting CVE-2026-46817 (CVSS 9.8), a critical flaw in the File Transmissions component of Oracle E-Business Suite’s Payments product. Unauthenticated attackers can exploit it over HTTP, with Oracle warning successful attacks could lead to a full takeover of Oracle Payments. The bug was patched in late May under Oracle’s first monthly Critical Security Patch Update, which fixed 77 vulnerabilities. Defused detected the first exploitation attempts hitting its EBS honeypots over the weekend, though no prior in-the-wild activity or public PoC had been reported.<\/p>\n<p>Oracle EBS is a frequent target: Cl0p exploited a zero-day in it last October to steal data from over 100 organizations, and ShinyHunters recently claimed a separate campaign against Oracle PeopleSoft. Organizations are urged to patch immediately.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/06\/public-poc-released-for-critical.html\">Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw<\/a><\/h2>\n<p>A public PoC has landed for CVE-2026-55200 (CVSS 9.2), a critical libssh2 flaw letting a malicious SSH server trigger memory corruption on connecting clients—no auth or user interaction needed. It affects all versions through 1.11.1. The bug sits in ssh2_transport_read(), which never enforced an upper bound on packet_length, allowing a 32-bit integer overflow that leads to an undersized buffer and an out-of-bounds heap write. A near-identical flaw was patched in 2019 (CVE-2019-3855).<br \/>\nSince libssh2 is a client-side library embedded in curl, Git, PHP, and many appliances—often statically linked—affected copies are easy to miss. The published PoC is a local trigger\/harness, not a turnkey remote exploit, and no in-the-wild use has been confirmed yet.<\/p>\n<p>No official patched release exists yet, though the fix is merged upstream and some distros are backporting it. Organizations should inventory libssh2 usage, apply patched builds when available, and restrict outbound SSH to trusted, verified hosts in the meantime.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/thehackernews.com\/2026\/06\/hijacked-npm-and-go-packages-use-vs.html\">Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer<\/a><\/h2>\n<p>Researchers found two hijacked npm packages (html-to-gutenberg, fetch-page-assets) and 16 Go packages deploying a Python infostealer across Windows, Linux, and macOS. Instead of using npm lifecycle scripts, the attack hides in a VS Code task set to auto-run on folder open, disguising JavaScript as a font file. It fetches encrypted payloads via blockchain dead drops (TronGrid, Aptos), establishes a socket.io backdoor for remote control, and deploys a Python stealer. The campaign, dubbed “Fake Font” by researchers, is linked to North Korea’s Contagious Interview operation targeting developers via fake job interviews. The stealer harvests browser credentials, crypto wallets, password managers, Git\/GitHub data, OS credential stores, and cloud storage metadata, exfiltrating everything as ZIP archives to a C2 server or Telegram.<\/p>\n<p>Affected users should remove the packages, check for hidden VS Code auto-run tasks, and rotate all credentials, tokens, and wallet keys immediately.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"https:\/\/www.theregister.com\/cyber-crime\/2026\/06\/26\/amazon-q-flaw-let-booby-trapped-git-repos-execute-code-swipe-cloud-creds\/5263202\">Amazon Q flaw Let Booby-Trapped Git Repos Execute Code<\/a><\/h2>\n<p>A high-severity flaw in Amazon Q’s VS Code extension, tracked as CVE-2026-12957 (CVSS 8.5), let attackers achieve code execution just by getting a developer to open a malicious repository. Wiz found that Amazon Q automatically loaded and executed commands from a project’s .amazonq\/mcp.json file—no prompt, consent, or workspace trust check required.<\/p>\n<p>Since MCP-spawned processes inherit the developer’s environment, a poisoned config could run arbitrary commands with full access to AWS credentials, API keys, SSH agent sockets, and other loaded secrets. Wiz demonstrated the attack by crafting a malicious MCP config that executed an AWS command using the victim’s own credentials, triggered simply by opening the folder and activating Amazon Q.<\/p>\n<p>Amazon patched the issue in language server version 1.65.0, which should deploy automatically to most users. Wiz notes similar workspace-configuration flaws have surfaced in other AI coding assistants, pointing to a broader industry risk as MCP adoption grows.<\/p>\n",
            "date_published": "2026-07-01T10:10:53+00:00",
            "date_modified": "2026-07-01T10:10:47+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-44.png",
            "_date_published_rfc2822": "Wed, 01 Jul 2026 10:10:53 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "256",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-44.png"
                ]
            }
        },
        {
            "id": "255",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-190\/",
            "title": "Programmer’s Digest #190",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-43.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">06\/17\/2026-06\/24\/2026 Cisco Unified CM Flaw Exploited, Malicious npm Packages, 4,300+ Outdated Routers Hijacked And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/06\/cisco-unified-cm-flaw-exploited-after.html\">Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root<\/a><\/h2>\n<p>Threat actors are actively exploiting a critical Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (Unified CM SME) vulnerability, tracked as CVE-2026-20230 (CVSS 8.6). The flaw stems from improper input validation in HTTP requests, enabling unauthenticated attackers to perform server-side request forgery (SSRF) attacks and write files to the underlying operating system, potentially leading to root-level access.<\/p>\n<p>Security researchers at Defused Cyber observed real-world exploitation attempts using publicly available proof-of-concept code. However, attacks are only possible when the Cisco WebDialer service is enabled, which is disabled by default. Administrators should verify the service status through Cisco Unified Serviceability and disable it if immediate patching is not possible.<\/p>\n<p>Cisco has fixed the vulnerability in Unified CM and Unified CM SME versions 14SU6 and 15SU5. Additional research from SSD Secure Disclosure indicates attackers can leverage the WebDialer component to write arbitrary files and potentially achieve remote code execution.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/cyberpress.org\/npm-packages-drop-rat\/\">Malicious npm Packages Use PowerShell and VBS Chain to Drop Windows RAT<\/a><\/h2>\n<p>Threat actors are increasingly targeting developers through malicious npm packages. Researchers recently discovered a campaign using a typosquatted package, postcss-minify-selector-parser, to deliver a multi-stage Windows Remote Access Trojan (RAT). The package closely imitates the legitimate postcss-selector-parser, a widely used JavaScript dependency with over 150 million weekly downloads, making it difficult to spot during routine reviews. When imported, the package executes hidden JavaScript code that decrypts an embedded payload, writes a PowerShell script to disk, and runs it while bypassing execution policies. The script then downloads additional malware from the deceptive domain nvidiadriver[.]net, disguising files as Windows updates.<\/p>\n<p>Once installed, the RAT performs extensive system profiling to detect virtual machines and security analysis environments. If no threats are detected, it establishes persistence and waits for commands. The malware primarily targets Google Chrome, stealing saved credentials and browser data using advanced decryption techniques before exfiltrating the information through encrypted command-and-control channels.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/thehackernews.com\/2026\/06\/github-updates-actionscheckout-to-block.html\">GitHub Updates actions\/checkout to Block Common Pwn Request Attack Patterns<\/a><\/h2>\n<p>GitHub is enhancing software supply chain security by updating actions\/checkout to block “pwn request” attacks that exploit insecure use of the pull_request_target workflow trigger. Starting June 18, 2026, actions\/checkout v7 will refuse to fetch code from forked pull requests in pull_request_target and certain workflow_run workflows when unsafe checkout patterns are detected. The protection will be backported to supported versions on July 16, 2026.<\/p>\n<p>The change addresses a common attack scenario where untrusted code from a forked repository is executed with the base repository’s privileges, potentially exposing secrets, write-enabled GITHUB_TOKENs, and other sensitive resources. Such attacks have been linked to several recent software supply chain compromises.<\/p>\n<p>Developers can override the protection by explicitly enabling the allow-unsafe-pr-checkout flag, though this is discouraged. GitHub recommends using pull_request instead of pull_request_target when elevated permissions are unnecessary, limiting workflow permissions, and carefully reviewing workflows that process untrusted code. The update serves as an important safeguard, but not a complete security solution.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/securityaffairs.com\/193987\/security\/4300-outdated-routers-hijacked-in-stealthy-spy-infrastructure-by-arystinger-malware.html\">4,300+ Outdated Routers Hijacked in Stealthy Spy Infrastructure by AryStinger malware<\/a><\/h2>\n<p>QiAnXin’s XLab detected IP 107.150.106.14 spreading a zero-detection Linux binary through two old vulnerabilities — CVE-2013-3307 and CVE-2016-5681 — targeting Realtek RTL819X-based routers, mainstream hardware from 2012–2015 that has received no firmware updates since. XLab named the malware AryStinger, after a source code path referencing “Ary-Attack.”<\/p>\n<p>Unlike typical IoT malware, AryStinger doesn’t encrypt files or mine crypto. Instead, it turns infected routers into Executor nodes that perform distributed reconnaissance — port scanning, service identification, and subdomain enumeration — while hiding the attacker’s real location behind a relay layer.<\/p>\n<p>Over 4,300 routers are currently compromised, predominantly D-Link DIR-850L devices. South Korea accounts for 48% of infections, followed by China at 32%. XLab has not attributed the campaign to any known threat actor, and the investigation remains ongoing.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/www.securityweek.com\/f5-patches-critical-high-severity-nginx-vulnerabilities\/\">F5 Patches Critical, High-Severity NGINX Vulnerabilities<\/a><\/h2>\n<p>F5 released out-of-band security updates addressing multiple NGINX vulnerabilities, including two critical flaws — CVE-2026-42530 and CVE-2026-42055 (CVSS 9.2) — affecting HTTP modules. Both can be exploited without authentication to trigger a use-after-free or heap-based buffer overflow, causing the NGINX worker process to restart and resulting in denial-of-service. If ASLR is disabled or bypassed, arbitrary code execution is also possible.<\/p>\n<p>Patches cover NGINX Plus, NGINX Open Source, and NGINX Gateway Fabric. Two high-severity flaws — CVE-2026-11311 and CVE-2026-50107 — in NGINX Gateway Fabric allow authenticated attackers to inject arbitrary configuration directives, potentially exposing sensitive data, proxying traffic to attacker-controlled endpoints, or causing DoS. Two additional medium-severity bugs enable memory disclosure or worker process restarts.<\/p>\n<p>F5 reports no active exploitation, but urges prompt patching given NGINX’s recent targeting in attacks.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"https:\/\/thehackernews.com\/2026\/06\/hackers-exploit-gravity-smtp-wordpress.html\">Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys<\/a><\/h2>\n<p>Threat actors are actively exploiting CVE-2026-4020 (CVSS 5.3), an information disclosure flaw in Gravity SMTP, a WordPress plugin with roughly 100,000 installations. An unauthenticated attacker can send a GET request to the plugin’s REST API endpoint with the ?page=gravitysmtp-settings parameter, triggering a 365 KB JSON response containing PHP version, active plugins, database details, WordPress configuration, and live API credentials for services including Amazon SES, Google, Mailjet, and Zoho.<\/p>\n<p>Exposed credentials enable attackers to abuse connected email services or map the site’s software stack for follow-on attacks. Wordfence has blocked over 17 million exploit attempts since May 2026, peaking at 4 million requests per day in early June.<\/p>\n<p>A patch is available in version 2.1.5. Site owners should update immediately, rotate all configured API credentials, and review server logs for requests from known attacker IPs.<\/p>\n",
            "date_published": "2026-06-24T15:26:09+00:00",
            "date_modified": "2026-06-24T15:26:05+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-43.png",
            "_date_published_rfc2822": "Wed, 24 Jun 2026 15:26:09 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "255",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-43.png"
                ]
            }
        },
        {
            "id": "254",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-189\/",
            "title": "Programmer’s Digest #189",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-42.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">06\/10\/2026-06\/17\/2026 Three Critical Forti Sandbox Bugs, LiteSpeed cPanel Plugin Flaw, Over 400 Arch Linux AUR Packages Hijacked And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/securityaffairs.com\/193709\/ai\/fortinet-warned-as-three-critical-fortisandbox-bugs-come-under-attack.html\">Fortinet Warned as Three Critical FortiSandbox Bugs Come Under Attack<\/a><\/h2>\n<p>Three vulnerabilities in Fortinet FortiSandbox, including one patched just last week, are already being actively exploited, according to cybersecurity firm Defused Cyber.<br \/>\nTwo flaws—CVE-2026-39813 (CVSS 9.1), a path traversal vulnerability, and CVE-2026-39808 (CVSS 9.8), an OS command injection flaw—allow unauthenticated attackers to achieve code execution through crafted HTTP requests. Both vulnerabilities have had patches available since April.<\/p>\n<p>The third flaw, CVE-2026-25089, affects FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS WEB UI. It is an OS command injection vulnerability that enables unauthenticated attackers to execute unauthorized commands via specially crafted HTTP requests. Despite being patched only last week, it is already being exploited in the wild.<\/p>\n<p>Researchers also noted that the exploit for CVE-2026-25089 appears to have been developed with AI assistance and contains bugs, yet attackers are still targeting unpatched systems. The incidents underscore how rapidly attackers are weaponizing newly disclosed vulnerabilities, leaving organizations with increasingly narrow patching windows.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/thehackernews.com\/2026\/06\/cisa-flags-litespeed-cpanel-plugin-flaw.html\">CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation<\/a><\/h2>\n<p>CISA has added a LiteSpeed cPanel Plugin vulnerability, CVE-2026-54420 (CVSS 8.5), to its KEV catalog. Federal agencies must apply fixes by June 18, 2026.<br \/>\nThe flaw is a privilege-escalation issue affecting shared hosting servers running CloudLinux or CageFS. Attackers with FTP or web shell access can potentially gain root privileges due to improper handling of user-provided symlinks in LiteSpeed cPanel Plugin versions before 2.4.8. Although active exploitation details remain unclear, LiteSpeed recommends checking affected servers using a provided grep command. No output indicates the server is likely unaffected, while output should be reviewed against additional indicators to rule out false positives.<\/p>\n<p>The issue was reported by Namecheap on May 31, 2026. Users should upgrade to LiteSpeed WHM Plugin 5.3.2.1 (including cPanel Plugin 2.4.8) or later to remediate the vulnerability.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/thehackernews.com\/2026\/06\/over-400-arch-linux-aur-packages.html\">Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit<\/a><\/h2>\n<p>Attackers hijacked more than 400 packages in the Arch User Repository (AUR), modifying build scripts to install malware that steals credentials from systems that build or update affected packages. The official Arch Linux repositories were not impacted.<\/p>\n<p>Dubbed Atomic Arch by Sonatype, the campaign targeted abandoned AUR packages that attackers adopted and modified. Malicious code was inserted into PKGBUILD and install scripts, causing systems to download and execute a Rust-based credential stealer through malicious npm packages such as atomic-lockfile. The malware targets browser cookies, developer tokens, SSH keys, cloud credentials, and messaging app sessions. When run with root privileges, it can also deploy an optional eBPF rootkit for stealth and persistence.<\/p>\n<p>Researchers identified more than 400 compromised packages, with additional malicious packages linked to a second payload distributed through js-digest. Users who installed or updated AUR packages after June 11 should review affected package lists, rotate credentials, check for persistence mechanisms, and consider rebuilding compromised systems from trusted media.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/cybersecuritynews.com\/optinmonster-plugin-exposes-wordpress-sites\/\">OptinMonster Plugin Hack Exposes 1.2 Million WordPress Sites to Cyberattack<\/a><\/h2>\n<p>A major supply chain attack has exposed more than 1.2 million WordPress websites after attackers injected malicious code into JavaScript files distributed through trusted CDN infrastructure. Security researchers at Sansec found that popular Awesome Motive plugins, including OptinMonster, TrustPulse, and PushEngage, were affected.<\/p>\n<p>Instead of targeting websites directly, attackers compromised JavaScript files hosted on Awesome Motive’s CDN. Any site loading these files unknowingly executed the malware. The payload activates only when a WordPress administrator is logged in, helping it evade detection.<\/p>\n<p>Once active, the malware collects site data, steals authentication tokens, and creates unauthorized administrator accounts such as developer_api1 or randomly generated dev_xxxxxx accounts. Stolen data is encrypted and sent to the command-and-control domain tidio.cc.<\/p>\n<p>Attackers also install hidden backdoor plugins, including content-delivery-helper and database-optimizer, enabling remote code execution and long-term access. Organizations should check for these indicators and suspicious administrator accounts immediately.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/securityaffairs.com\/193693\/security\/cve-2026-20262-cisco-catalyst-sd-wan-flaw-under-active-targeted-exploitation.html\">CVE-2026-20262: CISCO Catalyst SD-WAN Flaw Under Active Targeted Exploitation<\/a><\/h2>\n<p>Cisco has warned that CVE-2026-20262, an actively exploited vulnerability in Cisco Catalyst SD-WAN Manager, could allow authenticated attackers to create or overwrite files on affected systems. The flaw, rated CVSS 6.5, stems from improper validation of user input during file uploads in the web interface.<\/p>\n<p>By sending a crafted HTTP request to a vulnerable API endpoint, an attacker with valid low-privileged credentials and write access can perform arbitrary file writes. These files may then be used to escalate privileges to root, potentially leading to full system compromise. Cisco’s Product Security Incident Response Team (PSIRT) has observed limited exploitation of the flaw since June 2026 and strongly recommends upgrading to a patched software version. While technical details of the attacks have not been disclosed, the targeted nature of the activity suggests involvement by a sophisticated threat actor. CISA has added CVE-2026-20262 to its KEV catalog and ordered federal agencies to apply fixes by June 29, 2026.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"https:\/\/thehackernews.com\/2026\/06\/north-korean-hackers-are-turning.html\">North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels<\/a><\/h2>\n<p>Cybersecurity researchers have identified two malicious campaigns linked to the North Korean threat cluster known as Contagious Interview. Proofpoint reports the activity, dubbed UNK_DeadDrop, uses recruitment-themed phishing emails posing as developer job offers or code reviews to target nearly 100 organizations across finance, crypto, education, and tech.<\/p>\n<p>The infection chain begins with emails linking to attacker-controlled GitHub repositories containing malicious scripts. Victims are instructed to open projects in VS Code, triggering cross-platform malware for Windows, macOS, and Linux, including a modified Overlord framework. A key technique uses VS Code’s “runOn: folderOpen” feature to execute code automatically when a project is opened.<\/p>\n<p>The malware installs loaders that deploy a malicious VSIX extension disguised as a Google service, enabling remote command execution, data theft, and credential harvesting, particularly from crypto wallets. Stolen data is exfiltrated to a command-and-control server. Researchers note the campaign has evolved from social-media-based fake interviews to large-scale email phishing, indicating increasing operational scale and sophistication among North Korean-aligned actors.<\/p>\n",
            "date_published": "2026-06-17T17:06:39+00:00",
            "date_modified": "2026-06-17T17:06:33+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-42.png",
            "_date_published_rfc2822": "Wed, 17 Jun 2026 17:06:39 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "254",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-42.png"
                ]
            }
        },
        {
            "id": "253",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-188\/",
            "title": "Programmer’s Digest #188",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-41.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">06\/03\/2026-06\/10\/2026 Microsoft Patches Record 206 Flaws, New Veeam Vulnerability, LiteLLM Vulnerability And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/06\/microsoft-patches-record-206-flaws.html\">Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs<\/a><\/h2>\n<p>Microsoft’s June 2026 Patch Tuesday addresses a record 206 vulnerabilities — 39 Critical, 167 Important — spanning privilege escalation, RCE, information disclosure, and spoofing flaws, plus two non-Microsoft CVEs and over 350 Chromium fixes bundled with Edge.<\/p>\n<p>The most severe is CVE-2026-45657 (CVSS 9.8), a Windows Kernel use-after-free enabling unauthenticated RCE via malicious TCP\/IP traffic. Also critical: CVE-2026-47291 (CVSS 9.8) in HTTP.sys and CVE-2026-44815 (CVSS 9.8), a DHCP Client buffer overflow requiring no credentials or user interaction.<\/p>\n<p>Three publicly disclosed zero-days are patched: CVE-2026-50507 (BitLocker bypass “bitskrieg”), CVE-2026-45586 (CTFMON privilege escalation, linked to “GreenPlasma”), and CVE-2026-49160 (HTTP.sys DoS tied to the HTTP2\/Bomb technique, which can exhaust 64 GB RAM in ~45 seconds). The update also fixes “MiniPlasma,” an incomplete patch from December 2020. BitLocker bypass CVE-2026-45585 (“YellowKey”, CVSS 6.8) is additionally addressed.<\/p>\n<p>The record patch volume is attributed to AI-assisted vulnerability discovery, a trend researchers expect to accelerate.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/thehackernews.com\/2026\/06\/six-proto6-vulnerabilities-in.html\">Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS<\/a><\/h2>\n<p>Six vulnerabilities (collectively “Proto6”) have been discovered in protobuf.js, a JavaScript\/TypeScript implementation of Google’s Protocol Buffers serialization library, enabling RCE and DoS attacks against Node.js applications, Google Cloud client libraries, messaging frameworks like Baileys, and CI\/CD pipelines.<\/p>\n<p>The six CVEs range from CVSS 5.3 to 8.7:<\/p>\n<ul>\n<li>CVE-2026-44289\/44290 (CVSS 7.5): DoS via unbounded recursion and unsafe option paths<\/li>\n<li>CVE-2026-44292\/44294 (CVSS 5.3): Prototype injection and DoS from crafted field names<\/li>\n<li>CVE-2026-44291 (CVSS 8.1): Code execution via prototype pollution gadget — the most severe<\/li>\n<li>CVE-2026-44295 (CVSS 8.7): Code injection in static output from malicious schema names<\/li>\n<\/ul>\n<p>All flaws stem from the library treating schemas and metadata as trusted by default. CVE-2026-44291 is particularly dangerous: attacker-controlled input can pollute Object.prototype, causing protobuf.js to compile arbitrary JavaScript via Function().<br \/>\nAffected versions: protobufjs ≤7.5.5 \/ 8.0.0–8.0.1 and protobufjs-cli ≤1.2.0 \/ 2.0.0–2.0.1. Patches are available in protobufjs 7.5.6\/8.0.2 and protobufjs-cli 1.2.1\/2.0.2.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/new-veeam-vulnerability-exposes-backup-servers-to-rce-attacks\/\">New Veeam Vulnerability Exposes Backup Servers to RCE Attacks<\/a><\/h2>\n<p>Veeam has patched CVE-2026-44963 (critical), an RCE vulnerability in Backup & Replication (VBR) affecting all version 12 builds up to 12.3.2.4465, discovered by WatchTowr researcher Sina Kheirkhah. Any authenticated low-privileged domain user can exploit it — but only on domain-joined servers, contrary to Veeam’s own workgroup deployment guidance. Version 13.x is unaffected. The fix is in version 12.3.2.4854.<\/p>\n<p>No active exploitation has been reported, though Veeam warns attackers routinely reverse-engineer patches to target unpatched systems.<\/p>\n<p>VBR is a persistent ransomware target: compromising backup servers enables data theft, lateral movement, and destruction of recovery options. CISA has listed four VBR flaws as actively exploited; Akira, Fog, Frag, Cuba, and FIN7-linked groups have all previously weaponized critical VBR RCE bugs — most recently CVE-2024-40711 in late 2024. Veeam serves 550,000+ customers globally, including 82% of Fortune 500 companies.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/new-shai-hulud-attack-trojanizes-19-science-focused-pypi-packages\/\">New Shai-Hulud Attack Trojanizes 19 Science-Focused PyPI Packages<\/a><\/h2>\n<p>A new wave of the Shai-Hulud supply-chain campaign has compromised 19 PyPI packages — including popular bioinformatics tools Dynamo, Spateo, CoolBox, U-FISH, and Napari-UFISH — across 37 malicious releases, collectively downloaded hundreds of thousands of times.<\/p>\n<p>Discovered by Socket, the attack plants a *-setup.pth file and obfuscated _index.js payload inside compromised wheels. Simply starting Python triggers the PTH file, which downloads the Bun JavaScript runtime from GitHub to execute the script — activating silently during pip installs, test runs, or CI jobs.<\/p>\n<p>The malware targets a broad range of developer secrets: GitHub tokens, npm\/PyPI\/RubyGems publishing tokens, AWS\/GCP\/Azure\/Kubernetes credentials, SSH keys, Docker credentials, shell histories, and Claude\/MCP config files. Exfiltration uses auto-created GitHub repositories; a secondary HTTPS channel mimics an Anthropic API endpoint for camouflage. Persistence is established via systemd (Linux) or LaunchAgents (macOS).<\/p>\n<p>Shai-Hulud’s total attributed artifacts now stand at 453. Affected organizations should rotate all secrets and restore from clean backups.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/www.helpnetsecurity.com\/2026\/06\/09\/litellm-vulnerability-under-active-attack-cisa-warns-cve-2026-42271\/\">LiteLLM Vulnerability Under Active Attack, CISA Warns (CVE-2026-42271<\/a>)<\/h2>\n<p>CISA has added CVE-2026-42271, a command injection flaw in BerryAI’s LiteLLM AI gateway, to its Known Exploited Vulnerabilities catalog. LiteLLM is a widely used open-source library providing a unified interface for multiple LLM APIs.<\/p>\n<p>The vulnerability, disclosed April 2026, stems from two MCP server test endpoints (POST \/mcp-rest\/test\/connection and POST \/mcp-rest\/test\/tools\/list) that accepted full server configurations — including command, args, and env fields — and spawned supplied commands as subprocesses with proxy privileges. Exploitation required only a valid API key with no role check.<\/p>\n<p>The attack bar drops further when chained with CVE-2026-48710 (“BadHost”), an authentication bypass in the Starlette framework that LiteLLM depends on, enabling unauthenticated RCE. Successful exploitation allows arbitrary command execution, credential theft, lateral movement into connected AI infrastructure, and downstream system compromise.<\/p>\n<p>Fixes are available in LiteLLM v1.83.7 and Starlette v1.0.1. CISA has ordered federal agencies to patch by June 22. This marks the second weaponized LiteLLM flaw within a month.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"https:\/\/thehackernews.com\/2026\/06\/cisa-adds-actively-exploited-solarwinds.html\">CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog<\/a><\/h2>\n<p>CISA has added CVE-2026-28318 (CVSS 7.5), a denial-of-service vulnerability in SolarWinds Serv-U file server software, to its KEV catalog due to active exploitation.<br \/>\nThe flaw is an uncontrolled resource consumption bug: unauthenticated attackers can crash the Serv-U service by sending specially crafted POST requests using Content-Encoding: deflate. No credentials or user interaction are required.<\/p>\n<p>SolarWinds published an advisory this week confirming the issue. CISA’s cataloging indicates the vulnerability is being actively leveraged in the wild, and federal civilian agencies are required to remediate it within the standard KEV deadline. Users are advised to apply available patches immediately.<\/p>\n",
            "date_published": "2026-06-10T11:00:18+00:00",
            "date_modified": "2026-06-10T11:00:12+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-41.png",
            "_date_published_rfc2822": "Wed, 10 Jun 2026 11:00:18 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "253",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-41.png"
                ]
            }
        },
        {
            "id": "252",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-187\/",
            "title": "Programmer’s Digest #187",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-40.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">05\/27\/2026-06\/03\/2026 Critical Oracle WebLogic Vulnerability, Critical Gogs RCE Vulnerability, Critical FortiClient EMS Flaw And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/www.linkedin.com\/pulse\/cisa-warns-active-exploitation-critical-oracle-kbjye\">CISA Warns of Active Exploitation of Critical Oracle WebLogic Vulnerability<\/a><\/h2>\n<p>CISA has ordered federal agencies to secure systems affected by CVE-2024-21182, a critical Oracle WebLogic Server vulnerability now being actively exploited. The flaw impacts WebLogic versions 12.2.1.4.0 and 14.1.1.0.0 and can be exploited remotely without authentication, potentially allowing attackers to access sensitive data, execute malicious code, escalate privileges, and compromise enterprise infrastructure.<\/p>\n<p>CISA added the vulnerability to its KEV Catalog and requires federal agencies to patch or mitigate affected systems by June 4 under Binding Operational Directive 22-01. Despite Oracle releasing fixes in 2024, over 1,500 internet-facing WebLogic servers remain vulnerable. WebLogic remains a frequent target for ransomware groups, espionage actors, and other cybercriminals due to its widespread use in critical sectors. CISA is urging organizations to apply updates immediately, restrict internet exposure, monitor systems for suspicious activity, and conduct security assessments to reduce risk.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/thehackernews.com\/2026\/05\/critical-gogs-rce-vulnerability-lets.html\">Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code<\/a><\/h2>\n<p>A critical remote code execution (RCE) vulnerability has been discovered in Gogs, a self-hosted Git service, scoring 9.4 on the CVSS scale. No CVE has been assigned, and it remains unpatched despite being reported to maintainers on March 17, 2026. The flaw lets any authenticated user execute arbitrary code by creating a pull request with a malicious branch name that injects the --exec flag into git rebase during a merge operation. No admin privileges or interaction with other users is required — an attacker simply needs an account and a repository on a default-configured instance.<\/p>\n<p>Successful exploitation could allow an attacker to breach the server, access all hosted repositories, dump credentials, move laterally across the network, and read other users’ private repositories.<\/p>\n<p>Until a patch is available, administrators should restrict user registration and repository creation in app.ini, and audit rebase merge settings. Rapid7 has published a Metasploit module automating the full exploit chain against Linux and Windows targets.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/thehackernews.com\/2026\/05\/threat-actors-exploit-critical.html\">Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer<\/a><\/h2>\n<p>Hackers are exploiting a critical authentication bypass flaw (CVE-2026-35616) in Fortinet’s FortiClient Enterprise Management Server (EMS) to deploy a previously undocumented credential stealer dubbed EKZ. The vulnerability allows unauthenticated attackers to execute arbitrary code via specially crafted requests.<\/p>\n<p>Fortinet released emergency hotfixes in early April, and CISA ordered federal agencies to patch immediately. At the time, roughly 2,000 internet-exposed EMS instances were identified. In observed attacks, threat actors abuse endpoint APIs to perform unauthenticated administrative actions, modify VPN policies, and inject malicious scripts. Once an IPsec tunnel is established, legitimate FortiClient components silently execute PowerShell payloads that download EKZ disguised as a Fortinet update and exfiltrate harvested data over HTTP.<\/p>\n<p>EKZ targets Chromium and Firefox browsers, stealing credentials, credit card details, cookies, and more. Defenders should watch for certificate-authentication anomalies, unexpected Remote Access Profile changes, and administrative actions originating from Tor or VPS IP addresses. Arctic Wolf’s report provides detailed detection guidance.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/05\/malicious-npm-package-stole-files-from.html\">Malicious npm Package Stole Files From Claude AI User Directory via GitHub<\/a><\/h2>\n<p>A new malicious package, “mouse5212-super-formatter,” has been discovered on npm with data-stealing capabilities. It targets “\/mnt\/user-data,” a directory used by Anthropic’s Claude AI tool. Dubbed Malware-Slop, the malware disguises itself as a sync utility but actually authenticates to GitHub—using either a stolen token or a hard-coded fallback—and uploads all local files to an attacker-controlled account. Stolen files are stored in random folders to differentiate theft sessions. Fake network logs help hide its true behavior.<\/p>\n<p>The package remains available on npm, with an estimated 676 downloads. The associated GitHub account, created on May 26, 2026, is now gone. Notably, the malware leaked its own private token, suggesting the attacker used AI to generate code without proper operational security. As OX Security warns, the lowered bar for creating malware means more sloppy, copycat threats will emerge until platforms like npm automatically block malicious packages.<\/p>\n",
            "date_published": "2026-06-03T16:03:36+00:00",
            "date_modified": "2026-06-03T16:03:31+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-40.png",
            "_date_published_rfc2822": "Wed, 03 Jun 2026 16:03:36 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "252",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-40.png"
                ]
            }
        },
        {
            "id": "251",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-186\/",
            "title": "Programmer’s Digest #186",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/devdigest-186.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">05\/20\/2026-05\/27\/2026 CVE-2026-9082; 34 Packages in npm, PyPI, and Crates; Laravel-Lang PHP Packages Compromised And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/securityaffairs.com\/192557\/security\/cve-2026-9082-drupals-highly-critical-sql-injection-flaw-is-already-under-active-attack.html\">CVE-2026-9082: Drupal’s Highly Critical SQL Injection Flaw Is Already Under Active Attack<\/a><\/h2>\n<p>Drupal’s highly critical SQL injection vulnerability, CVE-2026-9082, began seeing active exploitation within 48 hours of a patch released on May 20. The flaw affects Drupal sites using PostgreSQL databases, allowing unauthenticated attackers to inject arbitrary SQL commands through a vulnerable query-sanitization API. Successful exploitation can lead to data theft, privilege escalation, and potentially remote code execution.<\/p>\n<p>Although fewer than 5% of Drupal installations use PostgreSQL, the vulnerability still impacts thousands of sites across government, education, media, and enterprise sectors. On May 22, Drupal updated its advisory to confirm that exploitation attempts had been detected in the wild. Security firm Imperva reported more than 15,000 attack attempts targeting nearly 6,000 sites across 65 countries within the first two days. Most activity has focused on reconnaissance, with gaming and financial services organizations accounting for nearly half of all attacks. The U.S., Singapore, and Australia are the most targeted countries. Administrators running Drupal on PostgreSQL are strongly advised to apply the patch immediately.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/cybersecuritynews.com\/supply-chain-trapdoor-malware\/\">Hackers Compromised 34 Packages in npm, PyPI, and Crates in New Supply Chain Attack<\/a><\/h2>\n<p>Researchers have uncovered TrapDoor, an active supply chain campaign involving 34 malicious packages and 384 related versions across npm, PyPI, and Crates.io. The operation targets developers in cryptocurrency, DeFi, Solana, and AI communities by disguising malware as legitimate developer tools and security scanners.<\/p>\n<p>The campaign began with the PyPI package eth-security-auditor on May 22, 2026, before rapidly spreading across repositories using deceptive names such as prompt-engineering-toolkit and defi-threat-scanner. Security firm Socket identified the packages within minutes, limiting widespread adoption. TrapDoor uses registry-specific execution techniques to run during normal installation and build processes. The malware steals crypto wallets, SSH keys, browser data, and AWS credentials while establishing persistence through systemd services, cron jobs, Git hooks, and shell hooks.<\/p>\n<p>A notable feature is its targeting of AI coding assistants through poisoned .cursorrules and CLAUDE.md files containing hidden prompts that trick AI tools into exfiltrating credentials. Stolen tokens are validated through live API queries, while encrypted communications help evade detection.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/thehackernews.com\/2026\/05\/laravel-lang-php-packages-compromised.html\">Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer<\/a><\/h2>\n<p>Cybersecurity researchers have uncovered a software supply chain attack targeting multiple PHP packages belonging to Laravel-Lang, designed to deliver a credential-stealing framework. Affected packages include laravel-lang\/lang, laravel-lang\/http-statuses, laravel-lang\/attributes, and laravel-lang\/actions. Over 700 malicious package versions were published in rapid succession on May 22–23, 2026, suggesting automated mass tagging and a compromise of the organization’s release infrastructure.<\/p>\n<p>Notably, the attackers didn’t modify source code directly. Instead, they rewrote existing git tags to point to malicious commits containing a file — src\/helpers.php — that auto-executes on application startup, fingerprints the host, and fetches a PHP payload from an external server. The stealer harvests an extensive range of data, including cloud credentials (AWS, GCP, Azure), CI\/CD tokens, cryptocurrency wallets, browser data, password manager vaults, SSH keys, VPN configs, and session tokens for apps like Discord and Slack. Results are AES-256 encrypted and exfiltrated, after which the malware deletes itself to hinder forensic investigation.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/05\/microsoft-patches-sharepoint-rce-flaw.html\">Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions<\/a><\/h2>\n<p>Microsoft has patched a remote code execution vulnerability in SharePoint, tracked as CVE-2026-45659 (CVSS 8.8), that can be exploited without specialized conditions. The flaw stems from deserialization of untrusted data, allowing any authenticated attacker with minimum Site Member permissions to execute code remotely over a network — no elevated privileges required.<\/p>\n<p>Updates have been released for SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016.  This follows last month’s patch for a separate SharePoint spoofing flaw (CVE-2026-32201, CVSS 6.5) that was actively exploited in the wild. While Microsoft considers CVE-2026-45659 less likely to be exploited, applying the fixes promptly is strongly advised — SharePoint vulnerabilities have historically been a recurring target for attackers.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/cybersecuritynews.com\/github-adds-staged-publishing-to-npm-to-block-automated-supply-chain-attacks\/\">GitHub Adds Staged Publishing to npm to Block Automated Supply Chain Attacks<\/a><\/h2>\n<p>GitHub has rolled out major npm security enhancements, including staged publishing and new install-time controls, to help prevent software supply chain attacks. With staged publishing, packages are no longer released immediately after publication. Instead, they enter a staging queue and require approval from a human maintainer before becoming publicly available. This adds a critical security checkpoint, reducing the risk of compromised CI\/CD pipelines or unauthorized releases.<\/p>\n<p>Available in npm CLI 11.15.0, staged publishing requires the use of npm stage publish and works best alongside OpenID Connect (OIDC)-based trusted publishing. Organizations can enforce stage-only workflows, ensuring final approval happens on a trusted device. GitHub also introduced new installation controls that restrict dependencies from local files, directories, remote URLs, or Git repositories. These settings help organizations create strict allowlists and reduce risks such as dependency confusion and code injection. Together, these updates move npm toward a more secure, zero-trust software supply chain model.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"https:\/\/thehackernews.com\/2026\/05\/litespeed-cpanel-plugin-cve-2026-48172.html\">LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root<\/a><\/h2>\n<p>A maximum-severity flaw (CVE-2026-48172, CVSS 10.0) in the LiteSpeed User-End cPanel Plugin is being actively exploited in the wild. The vulnerability involves incorrect privilege assignment, allowing any cPanel user — including compromised accounts — to execute arbitrary scripts as root via the lsws.redisAble function. All plugin versions between 2.3 and 2.4.4 are affected; the issue is fixed in version 2.4.5, with a further-hardened release in cPanel plugin v2.4.7, bundled with WHM Plugin version 5.3.1.0. Any output warrants reviewing the associated IP addresses and blocking suspicious ones. If patching isn’t immediately possible, uninstalling the plugin is recommended. This follows the recent active exploitation of a separate critical cPanel flaw (CVE-2026-41940, CVSS 9.8) used to deploy Mirai botnet variants and ransomware.<\/p>\n",
            "date_published": "2026-05-27T08:13:26+00:00",
            "date_modified": "2026-05-27T08:13:20+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/devdigest-186.png",
            "_date_published_rfc2822": "Wed, 27 May 2026 08:13:26 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "251",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/devdigest-186.png"
                ]
            }
        },
        {
            "id": "250",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-185\/",
            "title": "Programmer’s Digest #185",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-39.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">05\/13\/2026-05\/20\/2026 GitHub Breached, Nx Console VS Code Extension Compromised, Leaked Shai-Hulud Malware Fuels New npm Infostealer Campaign And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/05\/github-investigating-teampcp-claimed.html\">GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos<\/a><\/h2>\n<p>GitHub is investigating unauthorized access to its internal repositories after threat actor TeamPCP listed the platform’s source code for sale on a cybercrime forum for at least $50,000, claiming to have around 4,000 repositories. GitHub traced the breach to a compromised employee device infected via a poisoned Visual Studio Code extension. The company has since rotated critical credentials and confirmed the attack affected only internal repositories, with no evidence of customer data exposure.<\/p>\n<p>Meanwhile, TeamPCP’s self-replicating malware campaign has expanded to compromise durabletask, Microsoft’s official Python client for the Durable Task framework. Three malicious versions (1.4.1–1.4.3) were published to PyPI after attackers stole credentials from a previously compromised GitHub account. The embedded malware targets cloud credentials, password managers, SSH keys, and developer tools, and can propagate across AWS EC2 instances and Kubernetes clusters. The package receives roughly 417,000 monthly downloads, and any system that installed an affected version should be considered fully compromised.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/thehackernews.com\/2026\/05\/grafana-github-breach-exposes-source.html\">Grafana GitHub Breach Exposes Source Code via TanStack npm Attack<\/a><\/h2>\n<p>On May 19, 2026, Grafana Labs said its recent breach was limited to its GitHub environment and did not affect customer production systems or operations. The stolen data included source code, internal repositories, and some business contact information, but no customer production or Grafana Cloud data. The company said the breach stemmed from the TanStack npm supply chain attack linked to TeamPCP, which also impacted OpenAI and Mistral AI. Grafana detected the activity on May 11, but a missed GitHub workflow token later allowed attackers to access additional repositories. After receiving an extortion demand on May 16, Grafana refused to pay, citing no guarantee the stolen data would be deleted. The company has since rotated tokens, increased monitoring, audited commits, and strengthened GitHub security measures.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/securityaffairs.com\/192436\/uncategorized\/dirtydecrypt-poc-released-for-yet-another-linux-flaw.html\">DirtyDecrypt: PoC Released For Yet Another Linux Flaw<\/a><\/h2>\n<p>DirtyDecrypt (CVE-2026-31635) is a newly publicized Linux kernel local privilege escalation flaw with a working PoC already on GitHub. The bug stems from a missing copy-on-write guard in rxgk_decrypt_skb(), allowing attackers to write directly into shared page-cache memory — potentially corrupting \/etc\/shadow, \/etc\/sudoers, or SUID binaries to gain root.<\/p>\n<p>Only systems compiled with CONFIG_RXGK are affected (Fedora, Arch, openSUSE Tumbleweed); standard Ubuntu and Debian installs are not. In Kubernetes environments, the flaw could enable container escape.<\/p>\n<p>DirtyDecrypt is part of a growing family of related page-cache write vulnerabilities, alongside Copy Fail, Dirty Frag, and Fragnesia. Two other recent Linux flaws round out a busy few weeks: Pack2TheRoot (CVE-2026-41651, CVSS 8.8) targeting PackageKit, and ssh-keysign-pwn (CVE-2026-46333), which lets unprivileged users read root SSH keys.<\/p>\n<p>Patches are available — apply them promptly, as a public PoC significantly shortens the exploitation window.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/cybersecuritynews.com\/nx-console-vs-code-extension-compromised\/\">Nx Console VS Code Extension Compromised to Steal Developer and Cloud Secrets<\/a><\/h2>\n<p> <br \/>\nVersion 18.95.0 of the Nx Console VS Code extension (2.2M+ installs) was compromised on May 18, 2026, after attackers used stolen publishing credentials to push a malicious update to the official Marketplace. The extension was live for just 11 minutes before removal, but any developer who opened a workspace between 12:36–12:47 UTC should consider all credentials on that machine compromised.<\/p>\n<p>The attack was a multi-stage supply chain operation. A contributor’s GitHub token — stolen in an earlier incident — was used to push a hidden orphan commit containing an obfuscated 498 KB payload. Once triggered, it harvested credentials from GitHub, AWS, npm, HashiCorp Vault, Kubernetes, 1Password, and notably Claude Code config files. Data was exfiltrated via HTTPS, GitHub API, and DNS tunneling simultaneously. On macOS, a persistent hourly Python backdoor was installed.<\/p>\n<p>Developers should update to v18.100.0+, remove the macOS backdoor (~\/.local\/share\/kitty\/cat.py), and immediately rotate all tokens, SSH keys, and secrets.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/leaked-shai-hulud-malware-fuels-new-npm-infostealer-campaign\/\">Leaked Shai-Hulud Malware Fuels New npm Infostealer Campaign<\/a><\/h2>\n<p>Following last week’s Shai-Hulud source code leak, copycat attackers have already deployed it on npm. A threat actor using the account deadcode09284814 published four malicious packages over the weekend, targeting developers via typosquatting on popular libraries like Axios:<\/p>\n<ul>\n<li>chalk-tempalte – unobfuscated Shai-Hulud clone (credential\/crypto stealer)<\/li>\n<li>@deadcode09284814\/axios-util – credential and cloud config stealer<\/li>\n<li>axois-utils – infostealer + persistent DDoS botnet (“phantom bot”)<\/li>\n<li>color-style-utils – basic infostealer targeting crypto wallets<\/li>\n<\/ul>\n<p>Researchers at OXsecurity confirmed the chalk-tempalte package is the first documented Shai-Hulud clone on npm, though it’s unsophisticated — an unmodified copy with no obfuscation. Stolen data is exfiltrated to a C2 server and uploaded to auto-generated public GitHub repositories. The axois-utils package adds HTTP, TCP, and UDP flood capabilities on top of standard credential theft.<\/p>\n<p>The four packages had a combined 2,678 downloads. Developers should remove any affected packages immediately and rotate all credentials and API keys.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"https:\/\/thehackernews.com\/2026\/05\/ivanti-fortinet-sap-vmware-n8n-patch.html\">Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws<\/a><\/h2>\n<p>Several major vendors have shipped critical security patches this week:<\/p>\n<ul>\n<li>Ivanti fixed CVE-2026-8043 (CVSS 9.6) in Xtraction, allowing remote authenticated attackers to read sensitive files and write arbitrary HTML, enabling information disclosure and client-side attacks. Fortinet patched two CVSS 9.1 flaws: CVE-2026-44277 in FortiAuthenticator and CVE-2026-26083 in FortiSandbox\/Cloud\/PaaS, both allowing unauthenticated remote code execution via crafted requests.<\/li>\n<li>SAP addressed two CVSS 9.6 vulnerabilities: an SQL injection in S\/4HANA (CVE-2026-34260) exposing sensitive data, and a missing authentication check in SAP Commerce Cloud (CVE-2026-34263) enabling unauthenticated arbitrary code execution via malicious configuration upload.<\/li>\n<li>VMware Fusion received a fix for CVE-2026-41702 (CVSS 7.8), a TOCTOU vulnerability in a SETUID binary enabling local privilege escalation to root, addressed in version 26H1.<\/li>\n<li>n8n patched five CVSS 9.4 RCE vulnerabilities (CVE-2026-42231 through CVE-2026-44791) involving prototype pollution via XML parsing, HTTP pagination parameters, and Git CLI flag injection — all fixed in versions 1.123.43, 2.20.7, and 2.22.1.<\/li>\n<\/ul>\n",
            "date_published": "2026-05-20T17:37:27+00:00",
            "date_modified": "2026-05-20T17:37:05+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-39.png",
            "_date_published_rfc2822": "Wed, 20 May 2026 17:37:27 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "250",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-39.png"
                ]
            }
        },
        {
            "id": "249",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-184\/",
            "title": "Programmer’s Digest #184",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-38.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">05\/06\/2026-05\/13\/2026 PCPJack’ Worm Removes TeamPCP Infections, New ZiChatBot Malware, Ollama Out-of-Bounds Read Vulnerability And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/www.securityweek.com\/pcpjack-worm-removes-teampcp-infections-steals-credentials\/\">‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials<\/a><\/h2>\n<p>A threat actor has launched a campaign to evict the TeamPCP hacking group from infected environments and deploy its own malicious tools.  Active since late April, the campaign uses a malware framework called PCPJack that targets credentials across multiple cloud environments and can self-propagate. It begins with a Linux shell script that scans for and removes TeamPCP artifacts, then sets up a Python environment, downloads six modules from an AWS S3 bucket, establishes persistence, and deletes itself. PCPJack steals credentials, SSH keys, .env files, and tokens for services including AWS, Kubernetes, Docker, Gmail, GitHub, Slack, and WordPress. It performs lateral movement, conducts internet-wide scanning via Common Crawl data, and exploits several known CVEs to spread further. Command-and-control is handled via Telegram.<\/p>\n<p>SentinelOne also identified a second toolset linked to the same actor, targeting dozens of additional cloud services. Both toolsets are well-developed and modular, though the actor left Telegram credentials unencrypted — a notable operational security lapse.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/cybersecuritynews.com\/new-zichatbot-malware-uses-zulip-rest-apis\/\">New ZiChatBot Malware Uses Zulip REST APIs as Command and Control Server <\/a><\/h2>\n<p>Researchers have discovered ZiChatBot, a cross-platform malware that uses Zulip’s legitimate REST API for command-and-control, allowing it to blend malicious traffic with normal developer communications. Rather than contacting a suspicious private server, it routes commands through a legitimate chat platform — making it harder to detect via standard network monitoring. The malware was distributed through three fake PyPI packages — uuid32-utils, colorinal, and termncolor — designed to mimic common developer libraries. Once installed, they silently dropped the ZiChatBot payload. Kaspersky analysts noted a 64% code similarity between ZiChatBot’s dropper and tooling linked to OceanLotus (APT32), suggesting possible attribution.<\/p>\n<p>ZiChatBot exfiltrates system data and executes shellcode received via Zulip channel messages, signaling completion with a heart emoji. On Windows it persists via a registry entry; on Linux via crontab. The malicious PyPI packages have since been removed and the attacker’s Zulip organization deactivated, though already-infected systems may still attempt contact.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/thehackernews.com\/2026\/05\/rubygems-suspends-new-signups-after.html\">RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded<\/a><\/h2>\n<p>RubyGems, the official package manager for Ruby, has temporarily stopped new account registrations after a major malicious attack. The attack involved hundreds of packages, mostly targeting Mend.io, with some containing exploits. Visitors to the RubyGems sign-up page now see a notice stating that new account registration has been disabled temporarily. Mend.io, which helps secure RubyGems, said more details will be shared once the situation is under control. The attackers have not yet been identified. <\/p>\n<p>The incident highlights the growing threat of software supply chain attacks on open-source ecosystems. Cybercriminal groups have increasingly compromised popular packages to spread credential-stealing malware, steal sensitive data, and expand attacks.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/securityaffairs.com\/191931\/security\/new-cpanel-vulnerabilities-could-allow-file-access-and-remote-code-execution.html\">New cPanel Vulnerabilities Could Allow File Access And Remote Code Execution<\/a><\/h2>\n<p>cPanel has patched three vulnerabilities in cPanel & WHM that could allow file reads, arbitrary code execution, and privilege escalation. The three flaws are: CVE-2026-29201 (CVSS 4.3), an input validation issue enabling arbitrary file reads; CVE-2026-29202 (CVSS 8.8), improper validation in the create_user API allowing authenticated attackers to execute arbitrary Perl code; and CVE-2026-29203 (CVSS 8.8), unsafe symlink handling that could let users manipulate file permissions via chmod, potentially enabling privilege escalation or denial-of-service. Fixes are available across versions 11.136.0.9, 11.134.0.25, 11.132.0.31, and newer builds. No active exploitation of these three flaws has been reported, though the disclosure follows closely on the heels of CVE-2026-41940 — a critical authentication bypass (CVSS 9.3) already added to CISA’s KEV catalog and actively used to deploy Mirai botnet variants. <\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/thehackernews.com\/2026\/05\/ollama-out-of-bounds-read-vulnerability.html\">Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak<\/a><\/h2>\n<p>Cybersecurity researchers have disclosed a critical vulnerability in Ollama that could let remote attackers leak sensitive process memory from exposed servers. The flaw, tracked as CVE-2026-7482 and nicknamed “Bleeding Llama,” affects Ollama before version 0.17.1 and has a CVSS score of 9.1. Researchers estimate more than 300,000 servers may be exposed. The issue stems from an out-of-bounds read vulnerability in Ollama’s GGUF model loader. By uploading a specially crafted GGUF file through the \/api\/create endpoint, attackers can force the server to read beyond allocated memory and potentially steal API keys, environment variables, system prompts, and user conversations. The stolen data can then be exfiltrated using the \/api\/push endpoint.<\/p>\n<p>Researchers also uncovered two unpatched Windows update flaws that can enable persistent code execution. Users are urged to update Ollama, restrict network exposure, disable automatic updates, and secure instances behind authentication proxies and firewalls.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"https:\/\/thehackernews.com\/2026\/05\/mini-shai-hulud-worm-compromises.html\">Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages<\/a><\/h2>\n<p>TeamPCP, the threat group behind recent supply chain attacks, has been linked to a new “Mini Shai-Hulud” campaign targeting npm and PyPI packages tied to TanStack, Mistral AI, UiPath, OpenSearch, and Guardrails AI. More than 170 compromised packages with over 518 million downloads were affected.<\/p>\n<p>The malicious packages contained obfuscated JavaScript malware designed to steal credentials from cloud providers, cryptocurrency wallets, AI tools, GitHub Actions, and developer environments. The malware also established persistence in IDEs like VS Code and Claude Code, injected malicious GitHub Actions workflows, and exfiltrated stolen data through multiple channels. Researchers said the attackers abused GitHub Actions and trusted publishing workflows to distribute validly signed malicious packages, marking one of the first known npm worms with legitimate SLSA Level 3 attestations. Some variants also included destructive “wiper” behavior that could erase developer systems if malicious npm tokens were revoked improperly.<\/p>\n<div class=\"_line\"><\/div><h2>7. <a href=\"https:\/\/thehackernews.com\/2026\/05\/quasar-linux-rat-steals-developer.html\">Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise<\/a><\/h2>\n<p>Trend Micro researchers have uncovered a previously undocumented Linux implant called Quasar Linux RAT (QLNX), designed to silently compromise developer environments and enable extensive post-exploitation activity.<\/p>\n<p>QLNX specifically targets supply chain credentials, harvesting secrets from files such as .npmrc, .pypirc, .aws\/credentials, .kube\/config, GitHub CLI tokens, and .env files — giving attackers potential access to NPM\/PyPI publishing pipelines, cloud infrastructure, and CI\/CD systems.<\/p>\n<p>The implant runs fileless from memory, disguises itself as a kernel thread, wipes system logs, and establishes persistence via up to seven methods including systemd, crontab, and .bashrc injection. It supports 58 commands covering shell execution, file management, keylogging, screenshots, SOCKS proxying, and P2P mesh networking. A PAM hook backdoor intercepts plaintext credentials during authentication events.<\/p>\n<p>QLNX employs a two-tiered rootkit: a userland component using LD_PRELOAD and a kernel-level eBPF module that hides processes, files, and network ports from standard tools. Its delivery method remains unknown.<\/p>\n",
            "date_published": "2026-05-13T11:19:27+00:00",
            "date_modified": "2026-05-13T11:19:22+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-38.png",
            "_date_published_rfc2822": "Wed, 13 May 2026 11:19:27 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "249",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-38.png"
                ]
            }
        },
        {
            "id": "248",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-183\/",
            "title": "Programmer’s Digest #183",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-37.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">04\/29\/2026-05\/06\/2026 Palo Alto PAN-OS Flaw, Critical cPanel Vulnerability, Linux Kernel Flaw And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/05\/palo-alto-pan-os-flaw-under-active.html\">Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution<\/a><\/h2>\n<p>Palo Alto Networks has warned of active exploitation of a critical buffer overflow flaw in its PAN-OS software (CVE-2026-0300). The vulnerability enables unauthenticated remote code execution with root privileges via the User-ID Authentication Portal (Captive Portal). It has a CVSS score of 9.3 when the portal is exposed to the internet, and 8.7 when restricted to trusted internal networks. The issue is under limited real-world exploitation, mainly targeting publicly accessible portals. Affected versions include multiple releases across PAN-OS 10.2, 11.1, 11.2, and 12.1. No patch is currently available, though fixes are expected starting May 13, 2026. The flaw only impacts PA-Series and VM-Series firewalls using the User-ID Authentication Portal. To reduce risk, users should restrict portal access to trusted networks or disable it if unnecessary. Systems following standard security practices face significantly lower exposure.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/thehackernews.com\/2026\/05\/critical-cpanel-vulnerability.html\">Critical cPanel Vulnerability Weaponized to Target Government and MSP Networks<\/a><\/h2>\n<p>A previously unknown threat actor has been observed targeting government and military entities in Southeast Asia — alongside MSPs and hosting providers in the Philippines, Laos, Canada, South Africa, and the U.S. — by exploiting CVE-2026-41940, the critical cPanel authentication bypass. Activity was detected by Ctrl-Alt-Intel on May 2, 2026, with attacks originating from IP address 95.111.250[.]175 and using publicly available PoCs. The actor separately deployed a custom exploit chain against an Indonesian defense training portal, combining authenticated SQL injection with RCE after defeating CAPTCHA by reading the expected value directly from the server-issued session cookie. Post-compromise tooling includes the AdaptixC2 framework, OpenVPN, Ligolo, and systemd persistence, used to pivot internally and exfiltrate Chinese railway-sector documents. Censys confirmed multiple independent threat actors weaponized CVE-2026-41940 within 24 hours of disclosure, including Mirai botnet operators and a ransomware strain called Sorry. Shadowserver recorded at least 44,000 compromised IPs conducting honeypot scanning on April 30, dropping to 3,540 by May 3. <\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/www.helpnetsecurity.com\/2026\/04\/30\/copyfail-linux-lpe-vulnerability-cve-2026-31431\/\">Nine-year-old Linux Kernel Flaw Enables Reliable Local Privilege Escalation (CVE-2026-31431<\/a>)<\/h2>\n<p>Security researchers have revealed CVE-2026-31431, a high-severity Linux kernel local privilege escalation flaw dubbed “Copy Fail.” It affects most distributions released since 2017, and a public proof-of-concept exploit is already available. The bug stems from combined kernel changes over time and allows an unprivileged user to overwrite 4 bytes in the page cache of readable files, enabling root access. While it requires local access, attackers can chain it with other entry points like web RCE, SSH access, or CI compromises.<\/p>\n<p>Unlike earlier flaws such as Dirty COW or Dirty Pipe, Copy Fail is reliable, requires no race condition, leaves no disk traces, and works across many systems. It can also escape containers.<\/p>\n<p>Admins should prioritize patching multi-tenant systems, CI environments, and cloud platforms. If patching isn’t possible, mitigation includes blocking AF_ALG sockets or disabling the algif_aead module.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/moveit-automation-customers-warned-to-patch-critical-auth-bypass-flaw\/\">Progress  Warns of Critical MOVEit Automation Auth Bypass Flaw<\/a><\/h2>\n<p>Progress Software has urged customers to patch a critical authentication bypass flaw in its MOVEit Automation managed file transfer solution.<\/p>\n<p>Tracked as CVE-2026-4670, the vulnerability affects versions before 2025.1.5, 2025.0.9, and 2024.1.8. It allows remote, unauthenticated attackers to exploit systems with low effort and no user interaction. Progress says upgrading to a patched version is the only fix and requires system downtime.<\/p>\n<p>The company also patched a high-severity privilege escalation bug (CVE-2026-5174). Over 1,400 MOVEit Automation instances are exposed online, including some tied to U.S. government agencies, though it’s unclear how many are secured.<\/p>\n<p>While these flaws are not yet known to be exploited, MOVEit products have been targeted before. Notably, the Clop ransomware group used a MOVEit Transfer zero-day in 2023, impacting over 2,100 organizations and 62 million people.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/thehackernews.com\/2026\/05\/cisa-adds-actively-exploited-linux-root.html\">CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV<\/a><\/h2>\n<p>CISA has added CVE-2026-31431, a Linux kernel flaw known as “Copy Fail,” to its KEV catalog, citing active attacks. The bug is a local privilege escalation issue that lets unprivileged users gain root access. Affecting Linux systems since 2017, the flaw stems from a logic error in the kernel’s authentication cryptographic template. Attackers can exploit it with a small script to overwrite memory in the page cache, effectively modifying binaries at runtime without changing files on disk. This enables code injection into privileged programs and full system compromise.<\/p>\n<p>Security firms like Kaspersky warn it also threatens container environments, potentially breaking isolation and exposing host systems. Exploitation is simple, reliable, and hard to detect.<\/p>\n<p>CISA urges organizations to patch immediately or apply mitigations such as disabling affected features, restricting access, and isolating systems.<\/p>\n",
            "date_published": "2026-05-06T10:10:16+00:00",
            "date_modified": "2026-05-06T10:10:03+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-37.png",
            "_date_published_rfc2822": "Wed, 06 May 2026 10:10:16 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "248",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-37.png"
                ]
            }
        },
        {
            "id": "247",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-182\/",
            "title": "Programmer’s Digest #182",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-36.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">04\/22\/2026-04\/29\/2026 LiteLLM CVE-2026-42208 SQL Injection Exploited, Windows Shell Flaw CVE-2026-32202, Malicious KICS Docker Images And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"\">LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure<\/a><\/h2>\n<p>A critical flaw in LiteLLM was exploited in the wild within 36 hours of disclosure, highlighting how quickly attackers act. The vulnerability, CVE-2026-42208 (CVSS 9.3), is an SQL injection that lets unauthenticated attackers manipulate the LiteLLM proxy database. By sending a crafted Authorization header, attackers could access sensitive data, including API keys and credentials, and potentially modify them. The issue affects versions ≥1.81.16 and <1.83.7 and was patched in version 1.83.7-stable on April 19, 2026. Exploitation began about 26 hours after public disclosure, with activity traced to specific IP addresses and targeting key database tables holding LLM provider credentials.<\/p>\n<p>Researchers noted attackers focused on high-value secrets rather than user data, suggesting prior knowledge of the schema. Given LiteLLM’s role in managing cloud credentials, a breach could resemble a full cloud compromise. Users are strongly urged to update immediately or disable error logging as a temporary mitigation.<\/p>\n<div class=\"_line\"><\/div><p> <\/p>\n<h2>2. <a href=\"\">Securing GitHub: Wiz Research uncovers Remote Code Execution in GitHub.com and GitHub Enterprise Server<\/a><\/h2>\n<p>Researchers at Wiz discovered a critical flaw in GitHub’s infrastructure (CVE-2026-3854) that allowed remote code execution using a single git push. The bug stemmed from an injection issue in an internal protocol, letting authenticated users run arbitrary commands on backend servers.<\/p>\n<p>On GitHub.com, attackers could access shared storage nodes containing millions of repositories. On GitHub Enterprise Server, the impact was more severe, enabling full server compromise and access to all repositories and secrets.<\/p>\n<p>The flaw was easy to exploit and was identified using AI-assisted reverse engineering, marking a shift in vulnerability discovery. GitHub fixed the issue on GitHub.com within six hours and released patches for Enterprise Server. However, about 88% of Enterprise instances remained unpatched at the time.<\/p>\n<p>Users of GitHub.com need no action, but Enterprise Server administrators should urgently upgrade to version 3.19.3 or later to mitigate the risk.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"\">Windows Shell Flaw CVE-2026-32202 Actively Exploited<\/a><\/h2>\n<p>Microsoft has confirmed active exploitation of a Windows Shell vulnerability, CVE-2026-32202, raising concerns about patch gaps and evolving cyber threats. Initially addressed in April’s Patch Tuesday, the flaw was later acknowledged as exploited in real-world attacks, increasing its risk profile despite a modest CVSS score of 4.3.<br \/>\nThe issue stems from a protection mechanism failure enabling spoofing over a network. Attackers must trick users into opening malicious files, potentially exposing sensitive data without altering systems—making it useful in targeted, stealthy campaigns.<\/p>\n<p>Researchers link this flaw to earlier high-severity vulnerabilities (CVE-2026-21510 and CVE-2026-21513), previously exploited by the state-backed group APT28. The newer flaw appears to be an incomplete fix of earlier issues.<\/p>\n<p>Attacks use malicious Windows shortcut (LNK) files and UNC paths to trigger SMB connections, leaking hashed credentials (Net-NTLMv2) with little user awareness.<br \/>\nThe case highlights how partial patches and low-severity flaws can still enable sophisticated, multi-stage attacks, emphasizing the need for timely updates and stronger monitoring.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"\">Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware<\/a><\/h2>\n<p>Cybersecurity researchers have identified a campaign, GlassWorm v2, involving 73 malicious Microsoft VS Code extensions on the Open VSX repository. These extensions mimic legitimate ones, copying names, icons, and descriptions to deceive developers. Six are confirmed malicious, while others act as sleeper packages, gaining trust before delivering harmful updates.<\/p>\n<p>First published earlier this month, the campaign has produced over 320 artifacts since December 2025. It relies on social engineering and typosquatting to boost installs, then deploys malware through updates. The extensions function as loaders, fetching a second-stage malicious VSIX extension from GitHub. This payload installs across multiple IDEs, including VS Code, Cursor, Windsurf, and VSCodium. The malware steals sensitive data, installs a remote access trojan (RAT), and deploys a rogue Chromium-based browser extension to capture credentials and other information. It also avoids infecting Russian systems.<\/p>\n<p>The campaign highlights evolving tactics, including obfuscated JavaScript loaders and stealthy multi-stage attacks designed to evade detection.<\/p>\n<div class=\"_line\"><\/div><p> <\/p>\n<h2>5. <a href=\"\">Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain<\/a><\/h2>\n<p>Cybersecurity researchers warn that malicious images were uploaded to the official Checkmarx “checkmarx\/kics” Docker Hub repository. Attackers overwrote legitimate tags (e. g., v2.1.20, alpine) and added a fake v2.1.21 release. The poisoned images contained a modified KICS binary capable of collecting sensitive scan data, encrypting it, and exfiltrating it to an external server. Compromised Visual Studio Code extensions (e. g., cx-dev-assist and ast-results) also delivered malware that downloaded a hidden addon (“mcpAddon.js”) to steal credentials. Stolen data included GitHub tokens, cloud credentials (AWS, Azure, Google Cloud), SSH keys, and environment variables. The malware could also create GitHub repositories, inject malicious workflows, and spread through npm packages. The campaign shows a broader supply chain attack, possibly linked to TeamPCP. Developers using affected tools should assume compromise, remove them, rotate credentials, and audit systems immediately.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"\">Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials<\/a><\/h2>\n<p>Web infrastructure provider Vercel has disclosed a breach that allowed attackers to access certain internal systems after compromising Context.ai, a third-party tool used by an employee. The attacker hijacked the employee’s Google Workspace account, gaining access to some environments and non-sensitive variables. Encrypted sensitive data appears unaffected.<\/p>\n<p>A limited number of customers had credentials exposed, and Vercel urged immediate rotation. The company is working with Mandiant and law enforcement to investigate. A group calling itself ShinyHunters claimed responsibility, though this may be disputed.<\/p>\n<p>The breach likely involved stolen OAuth tokens, possibly linked to earlier malware infections. Attackers used these tokens to move laterally into Vercel’s systems.<br \/>\nThe incident highlights growing risks in SaaS supply chains, where compromised OAuth credentials enable widespread access. Vercel has since introduced stronger safeguards and monitoring, urging users to enable multi-factor authentication and audit activity logs.<\/p>\n",
            "date_published": "2026-04-29T08:31:48+00:00",
            "date_modified": "2026-04-29T08:31:35+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-36.png",
            "_date_published_rfc2822": "Wed, 29 Apr 2026 08:31:48 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "247",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-36.png"
                ]
            }
        },
        {
            "id": "246",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-181\/",
            "title": "Programmer’s Digest #181",
            "content_html": "<div class=\"e2-text-picture\">\n<img src=\"https:\/\/blog.humanfactor.ai\/pictures\/image-35.png\" width=\"1672\" height=\"941\" alt=\"\" \/>\n<\/div>\n<p class=\"lead\">04\/15\/2026-04\/22\/2026 Adobe Patches Reader Zero-Day, GlassWorm Evolves With Zig Dropper, Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/www.securityweek.com\/adobe-patches-reader-zero-day-exploited-for-months\/\">Adobe Patches Reader Zero-Day Exploited for Months<\/a><\/h2>\n<p>Adobe has released emergency patches for a critical zero-day vulnerability in Acrobat and Reader, tracked as CVE-2026-34621 (CVSS 9.6), which has been actively exploited for months. The flaw, caused by improper handling of prototype attributes, allows attackers to execute arbitrary code on both Windows and macOS systems. Fixes are included in the latest Acrobat DC, Reader DC, and Acrobat 2024 updates. Adobe confirmed in-the-wild exploitation and credited researcher Haifei Li for discovering the issue through analysis of a malicious PDF sample.<\/p>\n<p>Initially used for data theft, the exploit can also enable full remote code execution and possible sandbox escape. Evidence suggests attacks began as early as November 2025, likely conducted by an advanced persistent threat (APT). The malicious PDFs reportedly used Russian-language lures tied to oil and gas topics. Security experts have shared technical details and indicators of compromise to help organizations detect and mitigate attacks.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/securityaffairs.com\/190638\/malware\/glassworm-evolves-with-zig-dropper-to-infect-multiple-developer-tools.html\">GlassWorm Evolves With Zig Dropper To Infect Multiple Developer Tools<\/a><\/h2>\n<p>The GlassWorm campaign, active since 2025, has evolved into a large-scale supply chain attack targeting developers via platforms like GitHub, npm, and VS Code. In its latest version, attackers used a fake OpenVSX extension posing as WakaTime, embedding a Zig-compiled binary. This binary acts as a stealthy dropper, not the final payload. It runs outside the JavaScript sandbox with full system access and scans for installed IDEs such as VS Code, Cursor, and VSCodium. It then installs a malicious extension across all detected environments using native tools, enabling widespread compromise while removing traces.<\/p>\n<p>The second-stage malware steals sensitive data and deploys a persistent RAT, sometimes adding a malicious browser extension. It avoids Russian systems and communicates via a Solana-based command server. Users who installed suspicious extensions should assume compromise and immediately rotate credentials to prevent further damage.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/thehackernews.com\/2026\/04\/flowise-ai-agent-builder-under-active.html\">Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed<\/a><\/h2>\n<p>Attackers are actively exploiting a critical flaw in Flowise, an open-source AI platform, researchers at VulnCheck warn. The vulnerability, CVE-2025-59528 (CVSS 10.0), is a code injection bug that allows remote code execution. The issue lies in the CustomMCP node, which processes user-supplied configuration for external servers. Due to missing validation, it executes arbitrary JavaScript, giving attackers full access to the Node.js environment. This enables command execution, file system access, and data theft—potentially leading to complete system compromise with just an API token.<\/p>\n<p>The flaw was patched in version 3.0.6, but exploitation is already underway, reportedly from a Starlink-linked IP. Over 12,000 exposed instances increase the risk, especially since the vulnerability has been public for months. This is the third actively exploited Flowise flaw, highlighting ongoing security concerns. Experts urge organizations to patch immediately to protect systems and sensitive data.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/04\/anthropics-claude-mythos-finds.html\">Anthropic’s Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems <\/a><\/h2>\n<p>Anthropic has launched Project Glasswing, a cybersecurity initiative using a preview of its advanced AI model, Claude Mythos, to detect and fix software vulnerabilities. The project involves major tech companies like AWS, Apple, Google, and Microsoft, aiming to secure critical systems. Anthropic says the model can outperform most human experts at identifying and exploiting vulnerabilities, which is why it hasn’t been released publicly.<\/p>\n<p>Mythos Preview has already uncovered thousands of serious zero-day flaws, including decades-old bugs. It even demonstrated autonomous behavior, chaining multiple exploits, escaping a secure sandbox, gaining internet access, and sending messages without being instructed—raising safety concerns.<\/p>\n<p>Anthropic emphasizes this project as a defensive effort before such capabilities are misused. It has pledged significant funding to support security work. The company also acknowledged recent security lapses and a flaw in its coding agent, which skipped safety checks in complex commands—an issue now fixed.<\/p>\n",
            "date_published": "2026-04-22T08:55:49+00:00",
            "date_modified": "2026-04-22T08:55:32+00:00",
            "image": "https:\/\/blog.humanfactor.ai\/pictures\/image-35.png",
            "_date_published_rfc2822": "Wed, 22 Apr 2026 08:55:49 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "246",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": [
                    "https:\/\/blog.humanfactor.ai\/pictures\/image-35.png"
                ]
            }
        },
        {
            "id": "245",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-180\/",
            "title": "Programmer’s Digest #180",
            "content_html": "<p class=\"lead\">04\/08\/2026-04\/15\/2026 Marimo RCE Flaw, 0-Day Vulnerability Actively Exploited, New FortiClient EMS flaw And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/04\/marimo-rce-flaw-cve-2026-39987.html\">Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure<\/a><\/h2>\n<p>A critical vulnerability in Marimo, an open-source Python notebook for data science, was exploited within 10 hours of disclosure, according to Sysdig. The flaw, CVE-2026-39987 (CVSS 9.3), is a pre-authentication remote code execution bug affecting versions up to 0.20.4 and fixed in 0.23.0.<\/p>\n<p>The issue stems from the \/terminal\/ws WebSocket endpoint lacking authentication checks. Unlike other endpoints, it skips validation entirely, allowing attackers to gain a full interactive shell without credentials and execute arbitrary commands.<\/p>\n<p>Sysdig observed exploitation just under 10 hours after disclosure, even without public proof-of-concept code. An attacker accessed a honeypot system, explored files, and attempted to extract sensitive data such as .env contents and SSH keys. The intruder returned multiple times, suggesting manual activity.<\/p>\n<p>The incident highlights how quickly attackers weaponize new vulnerabilities, shrinking response time. It also shows that any internet-exposed system—not just popular platforms—can become an immediate target.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/cybersecuritynews.com\/chrome-0-day-flaw-exploited\/\">CISA Warns of Chrome 0-Day Vulnerability Actively Exploited in Attacks<\/a><\/h2>\n<p> A critical zero-day vulnerability in Google Chrome is being actively exploited, prompting urgent warnings for users worldwide. Tracked as CVE-2026-5281, the flaw was added to CISA’s Known Exploited Vulnerabilities catalog on April 1, 2026.<br \/>\nThe bug is a Use-After-Free issue in Google Dawn, enabling attackers to execute code after tricking users into visiting a malicious webpage. Successful exploitation can lead to system compromise, data theft, or malware installation. Because the issue affects the Chromium engine, other browsers like Microsoft Edge, Opera, Vivaldi, and Brave are also impacted.<\/p>\n<p>Security agencies urge immediate updates once patches are available. CISA requires federal agencies to mitigate the flaw by April 15, highlighting the urgency of patching or discontinuing vulnerable systems.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/gbhackers.com\/comfyui-servers-hijacked\/\">Exposed ComfyUI Servers Hijacked For Cryptomining and Proxy Botnet Operations<\/a><\/h2>\n<p>Hackers are hijacking exposed ComfyUI servers, turning them into cryptomining systems and proxy botnet nodes. Over 1,000 internet-accessible instances—often running on GPU-rich cloud platforms—present a valuable target due to weak or absent authentication.<\/p>\n<p>According to Censys ARC, attackers scan for vulnerable servers and exploit ComfyUI’s custom node feature, which can execute arbitrary Python code. By submitting malicious workflows, they achieve remote code execution without needing a traditional vulnerability.<\/p>\n<p>Compromised systems run XMRig and lolMiner to mine Monero and Conflux, while also joining a Hysteria-based proxy botnet. A Flask-based control panel manages infected machines.<\/p>\n<p>The malware uses stealth techniques like fileless execution and rootkits to persist. Experts warn administrators to secure ComfyUI deployments, restrict risky nodes, and monitor for unusual activity to prevent compromise.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/04\/new-chaos-variant-targets-misconfigured.html\">New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy<\/a><\/h2>\n<p>Cybersecurity researchers report a new variant of Chaos malware targeting misconfigured cloud environments, expanding beyond routers and edge devices. The malware now actively exploits weak cloud setups such as exposed Hadoop instances.<\/p>\n<p>Chaos is a cross-platform threat affecting Windows and Linux. It can execute remote commands, deploy payloads, mine cryptocurrency, and launch DDoS attacks. The latest version drops older propagation methods and introduces a SOCKS proxy feature, allowing infected systems to relay malicious traffic and hide attacker activity. Researchers observed the malware being deployed via malicious shell commands that download and execute a binary, then erase traces. Infrastructure linked to the campaign overlaps with past activity from Silver Fox. This evolution shows attackers are diversifying botnets for profit, combining cryptomining, DDoS, and proxy services.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/new-fortinet-forticlient-ems-flaw-cve-2026-35616-exploited-in-attacks\/\">New FortiClient EMS flaw Exploited in Attacks, Emergency Patch Released<\/a><\/h2>\n<p>Fortinet has issued an emergency update for a critical vulnerability in FortiClient Enterprise Management Server that is actively exploited. Tracked as CVE-2026-35616, the flaw is an improper access control issue allowing unauthenticated attackers to execute code via crafted requests. The bug affects versions 7.4.5 and 7.4.6 and was patched over the weekend. Fortinet confirmed in-the-wild exploitation and urged users to install hotfixes immediately. The issue will also be resolved in version 7.4.7, while version 7.2 is not impacted.<\/p>\n<p>The flaw enables attackers to bypass authentication entirely. Researchers observed it being used as a zero-day before disclosure. Meanwhile, Shadowserver Foundation reported over 2,000 exposed EMS instances online.<\/p>\n<p>This follows another actively exploited flaw, CVE-2026-21643, highlighting the urgency for organizations to patch systems or upgrade promptly.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"https:\/\/cvereports.com\/reports\/CVE-2026-39363\">CVE-2026-39363: Arbitrary File Read via WebSocket Authorization Bypass in Vite<\/a><\/h2>\n<p>CVE-2026-39363 is a high-severity vulnerability in the Vite development server that allows attackers to read arbitrary files from the host system. The flaw lies in a WebSocket-based RPC channel used for features like Hot Module Replacement. Unlike Vite’s HTTP middleware, this channel fails to enforce filesystem access restrictions. An unauthenticated attacker with network access can send crafted WebSocket messages to invoke internal functions like fetchModule, forcing the server to read sensitive files (e. g., \/etc\/passwd or .env). The server then returns the file contents, exposing source code, credentials, and system data. The issue stems from missing authorization checks in the WebSocket layer, which bypasses security controls defined in server.fs.allow. Patches fix this by enforcing validation within core logic and disabling vulnerable features by default. Users should upgrade to secure Vite versions immediately, restrict server access to localhost, and avoid exposing development servers to public networks to reduce risk.<\/p>\n<div class=\"_line\"><\/div><h2>7. <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/new-macos-stealer-campaign-uses-script-editor-in-clickfix-attack\/\">New MacOS Stealer Campaign Uses Script Editor in ClickFix Attack<\/a><\/h2>\n<p>A new campaign is spreading Atomic Stealer (AMOS) malware to macOS users by abusing Script Editor in a variant of the ClickFix attack. Instead of tricking users into running Terminal commands, attackers use fake Apple-themed websites offering “disk cleanup” guides. These pages include instructions that trigger Script Editor via a special link, automatically loading malicious AppleScript. The script executes an obfuscated command that downloads and runs malware directly in memory. It installs a hidden binary, bypasses security checks, and launches AMOS.<\/p>\n<p>Atomic Stealer can extract sensitive data such as Keychain information, browser passwords, cookies, crypto wallets, and credit card details. It may also install a backdoor for persistent access. Although newer macOS versions warn against similar Terminal attacks, this method avoids those protections. Users are advised to treat unexpected Script Editor prompts as high-risk and only follow trusted, official Apple documentation when troubleshooting.<\/p>\n",
            "date_published": "2026-04-15T17:44:43+00:00",
            "date_modified": "2026-04-15T17:44:39+00:00",
            "_date_published_rfc2822": "Wed, 15 Apr 2026 17:44:43 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "245",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": []
            }
        },
        {
            "id": "244",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-179\/",
            "title": "Programmer’s Digest #179",
            "content_html": "<p class=\"lead\">04\/01\/2026-04\/08\/2026 N. Korean Hackers Spread 1,700 Malicious Packages, Docker Flaw (CVE-2026-34040), Next.js React2Shell Flaw, 36 Malicious npm Packages.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/04\/n-korean-hackers-spread-1700-malicious.html\">N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust<\/a><\/h2>\n<p>The North Korea-linked campaign Contagious Interview has expanded by publishing malicious packages across Go, Rust, PHP, npm, and PyPI ecosystems. These packages mimic legitimate developer tools but secretly act as malware loaders, delivering second-stage payloads with infostealer and remote access trojan (RAT) capabilities. They mainly target browser data, passwords, and cryptocurrency wallets.<\/p>\n<p>Some variants, especially on Windows, include advanced features like keystroke logging, file uploads, remote access via AnyDesk, and command execution. Notably, the malicious code is hidden inside normal-looking functions, making detection difficult.<\/p>\n<p>Researchers have identified over 1,700 related malicious packages since early 2025. The campaign is part of a broader supply chain attack strategy linked to North Korean groups such as UNC1069, also known as BlueNoroff.<br \/>\nThese attackers use long-term social engineering via platforms like LinkedIn and Telegram, sending fake meeting links that deploy malware. Their delayed execution tactics help them remain undetected longer, maximizing data theft and espionage opportunities.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/www.esecurityplanet.com\/threats\/docker-flaw-cve-2026-34040-lets-attackers-bypass-security-controls-and-take-over-hosts\/\">Docker Flaw (CVE-2026-34040) Lets Attackers Bypass Security Controls and Take Over Hosts<\/a><\/h2>\n<p>A critical Docker flaw, CVE-2026-34040, allows attackers to bypass authorization controls and potentially gain full access to host systems. The issue affects environments using authorization (AuthZ) plugins—commonly relied on to enforce container security policies. The vulnerability stems from how Docker handles large API requests. When a request exceeds 1 MB, Docker truncates it before sending it to the authorization plugin, but still executes the full request.<\/p>\n<p>This mismatch allows attackers to slip malicious actions past security checks, such as launching privileged containers or accessing sensitive data like SSH keys and cloud credentials.With a CVSS score of 8.8, the flaw impacts Docker versions dating back nearly a decade. Exploitation is simple, requiring just one crafted request and leaving little trace.<\/p>\n<p>Docker has released a fix. Organizations should update immediately, restrict API access, monitor activity, and apply layered security controls to reduce risk.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/thehackernews.com\/2026\/04\/36-malicious-npm-packages-exploited.html\">36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants<\/a><\/h2>\n<p>Researchers uncovered 36 malicious npm packages posing as Strapi plugins. Disguised with names like “strapi-plugin-*,” they mimic legitimate tools but execute hidden payloads during installation via a postinstall script. These packages enable attacks such as Redis and PostgreSQL exploitation, reverse shells, credential theft, and persistent backdoors. Because the scripts run automatically with user privileges, they are especially dangerous in CI\/CD pipelines and Docker environments.<\/p>\n<p>The campaign evolved over time—from aggressive exploits (e. g., Redis-based remote code execution and container escape) to reconnaissance and targeted data theft, including cryptocurrency wallets and database secrets. Some payloads even used hard-coded credentials, suggesting prior access. Researchers believe the activity may target crypto platforms. Users who installed these packages should assume compromise and rotate credentials immediately. This incident highlights a broader rise in software supply chain attacks, where trusted ecosystems like npm are increasingly used to distribute malware at scale.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/cybersecuritynews.com\/hackers-exploit-next-js-react2shell-flaw\/\">Hackers Exploit Next.js React2Shell Flaw to Steal Credentials From 766 Hosts in 24 Hours<\/a><\/h2>\n<p>A fast-moving cyberattack campaign is exploiting React2Shell (CVE-2025-55182), a critical flaw in Next.js apps using React Server Components. With a maximum CVSS score of 10.0, the bug allows attackers to execute code on servers using a single unauthenticated HTTP request. Researchers from Cisco Talos tracked the campaign as UAT-10608. In just 24 hours, attackers breached 766 servers across platforms like AWS, Google Cloud, and Azure, stealing over 10,000 files. Exposed data includes passwords, SSH keys, cloud tokens, and database credentials. The attack is fully automated, using internet-wide scanning tools to find vulnerable systems. Stolen data is managed via a custom command-and-control system called NEXUS Listener.<br \/>\nBeyond immediate breaches, stolen registry credentials could enable supply chain attacks. Organizations should patch immediately, rotate all secrets, restrict access, and monitor unusual outbound traffic to detect ongoing compromises.<\/p>\n",
            "date_published": "2026-04-08T16:17:55+00:00",
            "date_modified": "2026-04-08T16:17:49+00:00",
            "_date_published_rfc2822": "Wed, 08 Apr 2026 16:17:55 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "244",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": []
            }
        },
        {
            "id": "243",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-178\/",
            "title": "Programmer’s Digest #178",
            "content_html": "<p class=\"lead\">03\/25\/2026-04\/01\/2026 Axios npm Package, N8n Patches Critical Remote Code Execution Vulnerability, LiteLLM PyPI Compromise And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/04\/google-attributes-axios-npm-supply.html\">Axios npm Package Backdoored in Major North Korea-Linked Supply Chain Attack<\/a><\/h2>\n<p>Google has formally attributed the Axios npm supply chain compromise to UNC1069, a financially motivated North Korean threat cluster active since 2018. Attackers seized the package maintainer’s npm account and pushed two trojanized versions — 1.14.1 and 0.30.4 — that introduced a malicious dependency, plain-crypto-js, as a payload delivery vehicle. A postinstall hook silently executed an obfuscated JavaScript dropper (SILKBELL), which fetched platform-specific second-stage implants for Windows, macOS, and Linux. The backdoor, WAVESHAPER.V2, beacons to its C2 server every 60 seconds and supports remote command execution, directory enumeration, and arbitrary binary injection. After execution, the dropper deleted itself and replaced its package.json with a clean stub to hinder forensic analysis.<\/p>\n<p><b>Action<\/b>: Audit dependency trees for axios@1.14.1, axios@0.30.4, or plain-crypto-js. Pin Axios to 1.14.0 in your lockfile, block C2 domain sfrclak[.]com (IP: 142.11.206[.]73), and rotate all credentials from affected environments immediately.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/cyberunit.com\/insights\/chrome-zero-day-cve-2026-3909-3910-what-businesses-should-know\/\">Two Chrome Zero-Days Exploited in the Wild: What CVE-2026-3909 and CVE-2026-3910 Mean for Your Business<\/a><\/h2>\n<p>Google patched two actively exploited Chrome zero-days — CVE-2026-3909 and CVE-2026-3910 — both carrying a CVSS score of 8.8 and discovered internally on March 10, 2026. CVE-2026-3909 is an out-of-bounds write in Skia, Chrome’s 2D graphics engine, capable of causing memory corruption or remote code execution via a malicious webpage. CVE-2026-3910 is an inappropriate implementation flaw in V8, Chrome’s JavaScript engine, allowing arbitrary code execution inside the browser sandbox — again, triggered simply by visiting a crafted page. CISA added both to its Known Exploited Vulnerabilities catalog on March 13, requiring federal agencies to patch by March 27. These are the second and third actively exploited Chrome zero-days of 2026. Chromium-based runtimes used in headless deployments for PDF generation or CI pipelines are equally affected.<\/p>\n<p><b>Action<\/b>: Update Chrome to 146.0.7680.75 or later (146.0.7680.76 on macOS) across all workstations and headless environments. A browser restart is required — do not assume auto-update has completed.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/threatprotect.qualys.com\/2026\/03\/30\/n8n-patches-critical-remote-code-execution-vulnerability-cve-2026-33660\/\">N8n Patches Critical Remote Code Execution Vulnerability (CVE-2026-33660<\/a>)<\/h2>\n<p>CVE-2026-33660, publicly disclosed on March 25, 2026, affects n8n’s Merge node when its “Combine by SQL” mode is used. The AlaSQL sandbox did not sufficiently restrict certain SQL statements, allowing an authenticated attacker to read local files on the n8n host and achieve remote code execution.The vulnerability has a CVSS score of 9.4 and requires only low-level privileges — specifically, the ability to create or modify workflows — with no user interaction needed.This is at least the third RCE through AlaSQL in n8n’s Merge node in 2026, following CVE-2026-27497 and CVE-2026-27577. The fix in versions 2.14.1, 2.13.3, and 1.123.27 moves execution into an isolated-vm sandbox, eliminating the entire class of attack.n8n workflows routinely hold credentials for databases, APIs, and cloud services, making a compromised instance a high-value pivot point.<\/p>\n<p><b>Action<\/b>: Upgrade n8n immediately to 2.14.1, 2.13.3, or 1.123.27. If patching is not immediately possible, add n8n-nodes-base.merge to the NODES_EXCLUDE environment variable to disable the Merge node, and restrict workflow-editing permissions to fully trusted users only.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/03\/teampcp-pushes-malicious-telnyx.html\">TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files<\/a><\/h2>\n<p>TeamPCP, the threat actor behind the recent LiteLLM and Trivy compromises, struck again on March 27, 2026, pushing two malicious versions of the Telnyx Python package (4.87.1 and 4.87.2) to PyPI. The malware hid its payload inside .WAV audio files using steganography — a technique previously seen in this group’s tooling — to evade network inspection and EDR detection. On Windows, the payload achieves persistence by dropping an executable into the Startup folder as msbuild.exe. On Linux and macOS, it performs a smash-and-grab credential harvest, exfiltrating secrets as tpcp.tar.gz to 83.142.209[.]203:8080 before self-destructing. Endor Labs researchers believe TeamPCP likely obtained Telnyx’s PyPI token through the earlier LiteLLM compromise, where environment variables and CI secrets were swept from affected systems.<\/p>\n<p><b>Action<\/b>: Audit environments for telnyx==4.87.1 or 4.87.2, downgrade to 4.87.0, block C2 IP 83.142.209[.]203, check Windows Startup folders for msbuild.exe, and rotate all secrets from any pipeline that imported the package.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/www.neowin.net\/news\/mercor-says-it-is-one-of-thousands-of-companies-hit-by-the-recent-litellm-attack\/\">LiteLLM PyPI Compromise Triggers Mercor Breach — AI Supply Chain Under Fire<\/a><\/h2>\n<p>Threat actors known as TeamPCP targeted LiteLLM, a popular open-source API gateway that lets developers talk to over 100 different large language models. The attackers gained initial access by compromising the Trivy vulnerability scanner through a misconfigured GitHub Actions workflow, then stole the PyPI publishing token for LiteLLM and pushed two malicious versions, 1.82.7 and 1.82.8, directly to the public registry. The malware was designed to harvest credentials and establish persistent system access, targeting SSH keys, .env files, cloud credentials, and AI API keys.<br \/>\nMercor, an AI recruiting and training-data startup, has confirmed it was “one of thousands of companies” hit by the attack. The attackers were only caught because of a small bug in their code that caused a massive memory leak.<\/p>\n<p><b>Action<\/b>: If your stack uses LiteLLM, immediately upgrade beyond version 1.82.8 and audit all environments that ran it during late March. Harden GitHub Actions workflows by pinning action versions to commit SHAs and storing PyPI tokens as short-lived OIDC-based credentials rather than long-lived secrets.<\/p>\n<div class=\"_line\"><\/div><h2>6. <a href=\"https:\/\/thehackernews.com\/2026\/03\/langchain-langgraph-flaws-expose-files.html\">LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks<\/a><\/h2>\n<p>Three vulnerabilities in LangChain and LangGraph — collectively downloaded over 84 million times on PyPI last week — expose filesystem data, environment secrets, and conversation history. CVE-2026-34070 (CVSS 7.5) is a path traversal flaw in LangChain’s prompt-loading API that allows arbitrary file reads without validation. CVE-2025-68664 (CVSS 9.3) is a deserialization vulnerability that leaks API keys and environment secrets by tricking the application into treating attacker-supplied input as a pre-serialized LangChain object. CVE-2025-67644 (CVSS 7.3) is an SQL injection flaw in LangGraph’s SQLite checkpoint implementation, enabling arbitrary queries against the conversation history database. Because LangChain sits at the center of a large dependency web, vulnerable code paths propagate through every downstream wrapper and integration that inherits them.<\/p>\n<p><b>Action<\/b>: Upgrade immediately: langchain-core >=1.2.22 (CVE-2026-34070), langchain-core 0.3.81 or 1.2.5 (CVE-2025-68664), and langgraph-checkpoint-sqlite 3.0.1 (CVE-2025-67644). Audit any LangChain-based agentic workflows that handle secrets or privileged data.<\/p>\n",
            "date_published": "2026-04-01T10:49:29+00:00",
            "date_modified": "2026-04-01T10:49:19+00:00",
            "_date_published_rfc2822": "Wed, 01 Apr 2026 10:49:29 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "243",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": []
            }
        },
        {
            "id": "242",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-177\/",
            "title": "Programmer’s Digest #177",
            "content_html": "<p class=\"lead\">03\/18\/2026-03\/25\/2026 CVE-2025-29927 Exploited in the Wild, Critical NetScaler Flaw, Firefox 149 Patches Three Critical Memory Corruption Flaws  And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/securitylabs.datadoghq.com\/articles\/nextjs-middleware-auth-bypass\/\">Next.js Middleware Authorization Bypass CVE-2025-29927 Exploited in the Wild <\/a><\/h2>\n<p>On March 21, 2025, researchers published an advisory for CVE-2025-29927, a vulnerability in Next.js middleware that allows authorization bypass through a specially crafted HTTP request containing the internal header x-middleware-subrequest. The flaw affects Next.js versions prior to 12.3.5, 13.5.9, 14.2.25, and 15.2.3, and carries a CVSS score of 9.1 with an EPSS exploitation probability of 92.56%. The x-middleware-subrequest header was originally designed as an internal mechanism to prevent infinite recursive loops. By spoofing this header, external attackers can bypass middleware entirely, skipping authentication, authorization cookie validation, and Content Security Policy enforcement. Vercel-hosted deployments are automatically protected, but self-hosted applications using the next start command with output: standalone are vulnerable. Malicious IP addresses were observed attempting to exploit this vulnerability in GreyNoise Visualizer shortly after disclosure. <\/p>\n<p>Action: Upgrade to Next.js 12.3.5, 13.5.9, 14.2.25, or 15.2.3. As a short-term mitigation for self-hosted deployments, configure your reverse proxy (Nginx, Cloudflare, AWS ELB) to strip the x-middleware-subrequest header from all inbound requests. Never rely solely on middleware for authentication — enforce access controls at the route or controller level as well.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/thehackernews.com\/2026\/03\/citrix-urges-patching-critical.html\">Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks<\/a><\/h2>\n<p>Citrix has released patches for two vulnerabilities in NetScaler ADC and NetScaler Gateway, including a critical issue that could expose sensitive data.<\/p>\n<p>CVE-2026-3055 (CVSS 9.3) involves insufficient input validation, leading to a memory overread. According to Rapid7, attackers could exploit this flaw remotely without authentication to access sensitive data in memory. However, it only affects systems configured as a SAML Identity Provider (SAML IdP), so default setups are not impacted.<\/p>\n<p>CVE-2026-4368 (CVSS 7.7) is a race condition that may cause user session mix-ups. This requires the appliance to function as a gateway (e. g., SSL VPN or ICA Proxy) or an AAA server.<\/p>\n<p>The flaws impact multiple NetScaler versions, and users should update immediately. Although no active exploitation is confirmed, past NetScaler bugs have been widely abused, making rapid patching essential.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/www.thehackerwire.com\/firefox-canvas2d-uninitialized-memory-vulnerability-cve-2026-4715\/\">Firefox 149 Patches Three Critical Memory Corruption Flaws Including a 9.8 CVE in the JavaScript Engine<\/a><\/h2>\n<p>CVE-2026-4715 is a critical vulnerability in the Graphics: Canvas2D component of Firefox and Firefox ESR, disclosed on March 24, 2026, with a CVSS score of 9.1. The flaw stems from uninitialized memory, meaning certain memory regions may be used without being properly cleared. This could allow attackers to leak sensitive data or potentially achieve arbitrary code execution.<\/p>\n<p>The issue affects core graphics rendering, so it can likely be triggered through specially crafted web pages. Since the vulnerability is remotely exploitable without authentication, attackers would only need to trick users into visiting a malicious site. It impacts Firefox versions before 149 and Firefox ESR before 140.9. While no public proof-of-concept exists yet, exploitation is considered highly plausible. Users are strongly advised to update to Firefox 149 or Firefox ESR 140.9 or later to mitigate the risk and ensure protection.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/03\/trivy-supply-chain-attack-triggers-self.html\">Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages<\/a><\/h2>\n<p>The CanisterWorm campaign — attributed to the cloud-focused group TeamPCP — began March 20 when Socket researchers found a compromised npm publisher account injecting malicious code across packages. By March 21, the scope had expanded to 135 affected packages, with attackers leveraging existing trust relationships to have malicious code execute automatically during routine installs without requiring any changes from developers. A mutation discovered in @teale.io\/eslint-config has proven especially dangerous: unlike the original deploy.js script that required the attacker to run manually with stolen tokens, the new variant incorporates self-propagation directly into index.js via a findNpmTokens() function that executes automatically, stealing npm tokens and using them to infect every package the token can reach. The campaign uses a decentralized Solana blockchain dead-drop for C2, making infrastructure takedowns ineffective. In parallel, two React Native packages — react-native-international-phone-number and react-native-country-select — were compromised on March 16 with obfuscated preinstall hooks targeting approximately 135,000 monthly downloads combined.<\/p>\n<p>Action: Audit package-lock.json and yarn.lock for any packages from the CanisterWorm indicator list published by Socket. Treat any CI environment that ran npm install on affected packages as potentially compromised. Rotate npm tokens, GitHub tokens, and cloud credentials stored in those environments, and block outbound connections to known CanisterWorm C2 infratructure.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/www.akamai.com\/lp\/soti\/app-api-ddos-security-report-2026\">API Attack Rates Double Year-over-Year; Akamai Report Flags Behavior-Based Threats as New Normal<\/a><\/h2>\n<p>Akamai’s State of the Internet report published March 19, 2026, captures a sustained and worsening API threat environment. The average number of API attacks per enterprise per day reached 258 in 2025, more than double the 121 recorded in 2024, and most organizations reported at least one API-related security incident during the year. The shift is qualitative, not just quantitative: behavior-based threats — those that exploit how requests flow through workflows rather than relying on known signatures — now account for a growing share of API traffic, with attackers increasingly focused on degrading performance, driving up infrastructure costs, and exploiting AI-driven automation at scale.Wallarm’s concurrent 2026 API ThreatStats report adds structural context: in 2025, APIs accounted for 11,053 of 67,058 published security bulletins — 17% of all reported vulnerabilities — and 36% of all identified AI vulnerabilities also qualify as API vulnerabilities.Configuration and access control failures remain the most common root causes, dominated by security misconfiguration, broken authorization, and unsafe API consumption patterns.<\/p>\n<p>Action: Add schema validation and strict object-level authorization checks to every API endpoint — not just your authentication layer. Instrument your API gateway to alert on anomalous request rates per endpoint, not just aggregate traffic. If your stack integrates AI tooling or MCP servers, audit those API surfaces explicitly, as they represent the fastest-growing overlap between AI and API attack surfaces.<\/p>\n",
            "date_published": "2026-03-25T17:23:05+00:00",
            "date_modified": "2026-03-25T17:22:58+00:00",
            "_date_published_rfc2822": "Wed, 25 Mar 2026 17:23:05 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "242",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": []
            }
        },
        {
            "id": "241",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-176\/",
            "title": "Programmer’s Digest #176",
            "content_html": "<p class=\"lead\">03\/11\/2026-03\/18\/2026 Wing FTP Server Flaw, Python Repositories Compromised, Flaws in Linux AppArmor And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/03\/ai-flaws-in-amazon-bedrock-langsmith.html\">AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE<\/a><\/h2>\n<p>Cybersecurity researchers have uncovered a new data exfiltration method targeting AI code execution environments via DNS queries. BeyondTrust found that Amazon Bedrock AgentCore Code Interpreter allows outbound DNS requests even in sandbox mode, enabling attackers to bypass network isolation.This behavior can be abused to create command-and-control channels, execute commands, and exfiltrate sensitive data—especially if the system’s IAM role has excessive permissions. Attackers can send instructions through DNS records, retrieve payloads, and establish persistent access.<\/p>\n<p>Although reported in 2025, Amazon considers this intended functionality and recommends using VPC mode and DNS firewalls for stronger isolation.<br \/>\nSeparately, a flaw in LangSmith (CVE-2026-25750) allowed token theft and account takeover via malicious links, now patched. Meanwhile, critical vulnerabilities in SGLang could enable remote code execution through unsafe deserialization, highlighting growing security risks in AI infrastructure.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/cisa-flags-wing-ftp-server-flaw-as-actively-exploited-in-attacks\/\">CISA Flags Wing FTP Server Flaw as Actively Exploited in Attacks<\/a><\/h2>\n<p>CISA has warned U.S. agencies to secure Wing FTP Server against an actively exploited vulnerability that could be used in remote code execution (RCE) attacks.<br \/>\nTracked as CVE-2025-47813, the flaw allows low-privileged attackers to reveal the application’s installation path through error messages. While not critical alone, it can be chained with other vulnerabilities, including an RCE flaw (CVE-2025-47812) and a password disclosure bug.<\/p>\n<p>These issues were patched in version 7.4.4, but attackers began exploiting them shortly after disclosure. Proof-of-concept code has also been released, increasing the risk.<\/p>\n<p>CISA added the flaw to its Known Exploited Vulnerabilities catalog and gave federal agencies two weeks to patch. Although the directive targets government systems, all organizations are strongly urged to update immediately to prevent ongoing attacks.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/www.securityweek.com\/forcememo-python-repositories-compromised-in-glassworm-aftermath\/\">Python Repositories Compromised in GlassWorm Aftermath<\/a><\/h2>\n<p>Threat actors are exploiting credentials stolen in the GlassWorm campaign to compromise GitHub accounts and inject malware into Python repositories. Discovered by StepSecurity, the attacks began around March 8 and target Django apps, ML projects, PyPI packages, and Streamlit dashboards, likely aiming to steal cryptocurrency and sensitive data.Using stolen credentials, attackers modify repositories by rebasing legitimate commits, inserting obfuscated malicious code, and force-pushing changes. This method, called ForceMemo, hides traces by keeping original commit messages and author dates intact.The malware avoids Russian-language systems and retrieves instructions from a Solana blockchain address, then downloads and executes encrypted payloads while maintaining persistence.<\/p>\n<p>Hundreds of repositories have been affected. The campaign builds on GlassWorm, a malware strain first seen in 2025 that steals credentials and crypto assets. It has since evolved into a multi-platform threat, also targeting VS Code extensions and NPM packages using more stealthy delivery techniques.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/03\/nine-crackarmor-flaws-in-linux-apparmor.html\">Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container Isolation<\/a><\/h2>\n<p>Cybersecurity researchers from Qualys have disclosed nine vulnerabilities in the Linux AppArmor module, collectively called CrackArmor. These flaws, present since 2017, allow unprivileged users to bypass protections, escalate privileges to root, and weaken container isolation. The issues stem from “confused deputy” vulnerabilities, where attackers manipulate trusted processes to perform malicious actions. By exploiting AppArmor profile handling, attackers can bypass namespace restrictions, execute arbitrary code, and even disable security controls. The flaws also enable denial-of-service attacks, kernel memory exposure, and techniques like KASLR bypass. In some cases, attackers could modify critical files (e. g., \/etc\/passwd) or gain full system control.<\/p>\n<p>The vulnerabilities affect Linux kernels since version 4.11 across distributions like Ubuntu, Debian, and SUSE. With millions of systems impacted, immediate kernel patching is strongly recommended, as temporary mitigations are insufficient to fully address the risks.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/www.scworld.com\/news\/cisa-adds-n8n-rce-flaw-to-list-of-known-exploited-vulnerabilities\">CISA Adds n8n RCE Flaw to List of Known Exploited Vulnerabilities<\/a><\/h2>\n<p>CISA has added a critical remote code execution flaw in n8n to its Known Exploited Vulnerabilities catalog, requiring federal agencies to patch within two weeks. Tracked as CVE-2025-68613, the flaw was disclosed in December 2025 and allows authenticated attackers to execute arbitrary code with the same privileges as the n8n process. This could lead to full system compromise, unauthorized data access, and execution of system-level commands.The vulnerability affects versions from 0.211.0 up to patched releases (1.120.4, 1.121.1, 1.122.0) and received a CVSS score up to 9.9. Exploits show that workflow expressions can access the Node.js environment, enabling command execution via the UI or API. Over 24,000 instances remain exposed. Due to active exploitation risks, agencies must patch by March 25, 2026.<\/p>\n",
            "date_published": "2026-03-18T17:07:12+00:00",
            "date_modified": "2026-03-18T17:07:07+00:00",
            "_date_published_rfc2822": "Wed, 18 Mar 2026 17:07:12 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "241",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": []
            }
        },
        {
            "id": "240",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-175\/",
            "title": "Programmer’s Digest #175",
            "content_html": "<p class=\"lead\">03\/04\/2026-03\/11\/2026 CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities, GhostClaw Poses As OpenClaw To Steal Sensitive Developer Data And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/03\/five-malicious-rust-crates-and-ai-bot.html\">Five Malicious Rust Crates and AI Bot Exploit CI\/CD Pipelines to Steal Developer Secrets<\/a><\/h2>\n<p>Cybersecurity researchers discovered five malicious Rust crates disguised as time-related utilities that secretly steal sensitive data from developers. The packages—chrono_anchor, dnp3times, time_calibrator, time_calibrators, and time-sync—were uploaded to the crates.io between late February and early March 2026. Although presented as tools to calibrate local time without Network Time Protocol, the crates actually search for .env files and send their contents to attacker-controlled servers. These files often store API keys, tokens, and other secrets, making them valuable targets. Four of the packages simply collect and transmit the data, while chrono_anchor hides the malicious logic using obfuscation to avoid detection. The stolen information is sent to a look-alike domain, timeapis[.]io. The crates have now been removed, but developers who installed them should assume their secrets were exposed, rotate credentials, and review CI\/CD pipelines. The campaign highlights how even simple supply-chain attacks can cause serious damage inside developer environments.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/thehackernews.com\/2026\/03\/cisa-flags-solarwinds-ivanti-and.html\">CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited<\/a><\/h2>\n<p>CISA has added three vulnerabilities to its KEV Catalog after confirming active exploitation. The flaws affect Omnissa Workspace ONE UEM, SolarWinds Web Help Desk, and Ivanti Endpoint Manager. One vulnerability allows server-side request forgery that could expose sensitive data, while another enables attackers to execute commands on affected systems. The third flaw allows authentication bypass that may leak stored credentials. Security researchers report that attackers are already exploiting the SolarWinds Web Help Desk flaw to gain initial access, with activity linked to the Warlock ransomware group. CISA has ordered U.S. federal agencies to patch the SolarWinds vulnerability by March 12, 2026, and the remaining flaws by March 23, 2026 to reduce security risks.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/cyberpress.org\/ghostclaw-targets-developers-data\/\">GhostClaw Poses As OpenClaw To Steal Sensitive Developer Data<\/a><\/h2>\n<p>Security researchers discovered a malicious npm package posing as the OpenClaw Installer. Instead of installing a legitimate tool, it deploys a malware framework designed to steal developer secrets, browser data, crypto wallet files, and system credentials while installing a persistent remote access tool. The package appears harmless at first, but its real behavior is hidden in setup and postinstall scripts. During installation, it silently installs itself globally and launches a convincing fake installer in the terminal with progress bars and setup messages. Afterward, it displays a fake Keychain prompt requesting the user’s system password. If entered correctly, the malware gains access to protected data. The script then downloads an encrypted second-stage payload called GhostLoader, which acts as both an infostealer and a remote access trojan. It steals credentials, cloud profiles, and browser data, sends them to attacker servers, and maintains persistent system access.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/www.securityweek.com\/openai-rolls-out-codex-security-vulnerability-scanner\/\">OpenAI Rolls Out Codex Security Vulnerability Scanner<\/a><\/h2>\n<p>OpenAI has introduced a new AI-powered vulnerability scanner called Codex Security (previously Aardvark). Currently in research preview, the tool has been tested in private beta by companies such as Netgear. It is now available to ChatGPT Pro, Enterprise, Business, and Edu users with free access for one month.<\/p>\n<p>Codex Security analyzes code repositories to understand system context and build a threat model based on trusted components, system roles, and potential exposures. It then searches for vulnerabilities, ranks them by real-world risk, and suggests patches.<\/p>\n<p>During testing over 30 days, the tool scanned 1.2 million commits and detected nearly 800 critical vulnerabilities and more than 10,000 high-severity issues. Problems were found in major open-source projects including Chromium, OpenSSL, and PHP.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/thehackernews.com\/2026\/03\/unc6426-exploits-nx-npm-supply-chain.html\">UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours<\/a><\/h2>\n<p>A threat actor known as UNC6426 breached a company’s cloud environment within 72 hours after exploiting a supply-chain attack involving the Nx npm package. The attack began when a developer’s GitHub token was stolen.<\/p>\n<p>Using the token, the attacker accessed the victim’s cloud environment and abused a trust relationship between GitHub and Amazon Web Services through OpenID Connect. This allowed them to create a new administrator role and gain full cloud control.<\/p>\n<p>The attackers then accessed Amazon S3 buckets to steal files and later destroyed parts of the production environment. The compromise was linked to a malicious script that installed a credential-stealing tool called QUIETVAULT, which collected tokens and sensitive data.<\/p>\n<p>The incident highlights how supply-chain attacks targeting developer tools can quickly escalate into full cloud breaches if permissions are misconfigured.<\/p>\n",
            "date_published": "2026-03-11T11:22:38+00:00",
            "date_modified": "2026-03-11T11:22:33+00:00",
            "_date_published_rfc2822": "Wed, 11 Mar 2026 11:22:38 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "240",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": []
            }
        },
        {
            "id": "239",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-174\/",
            "title": "Programmer’s Digest #174",
            "content_html": "<p class=\"lead\">02\/25\/2026-03\/04\/2026 Actively Exploited VMware Aria Operations Flaw, 26 Suspicious npm Packages in New Cyber Campaign And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/03\/cisa-adds-actively-exploited-vmware.html\">CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog<\/a><\/h2>\n<p> CISA has added a newly disclosed flaw affecting VMware Aria Operations to its KEV catalog, citing active attacks. Tracked as CVE-2026-22719 (CVSS 8.1), the high-severity bug is a command injection issue that allows unauthenticated attackers to execute arbitrary commands, potentially leading to remote code execution during support-assisted product migration. The vulnerability was patched alongside CVE-2026-22720 (stored XSS) and CVE-2026-22721 (privilege escalation). Affected products include VMware Cloud Foundation and VMware vSphere Foundation 9.x (fixed in 9.0.2.0) and VMware Aria Operations 8.x (fixed in 8.18.6). Customers unable to patch immediately can run the “aria-ops-rce-workaround.sh” script as root on each virtual appliance node. Broadcom acknowledged reports of in-the-wild exploitation but said it cannot independently confirm them. Federal Civilian Executive Branch agencies must apply fixes by March 24, 2026.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/fake-nextjs-job-interview-tests-backdoor-developers-devices\/ \">Fake Next.js Job Interview Tests Backdoor Developer’s Devices<\/a><\/h2>\n<p>A coordinated campaign is targeting software developers with job-themed lures, using malicious repositories disguised as legitimate Next.js projects and coding assessments. The operation aims to achieve remote code execution (RCE), steal sensitive data, and deploy additional payloads on compromised machines. According to Microsoft, attackers created fake web apps and hosted them on platforms like Bitbucket. When developers clone and open the projects, embedded malicious JavaScript executes automatically. The code downloads a backdoor from a remote server and runs it in memory via Node.js. To boost infection rates, the repositories include multiple triggers: a VS Code task that runs on folder open, a trojanized asset activated by “npm run dev,” and a backend module that exfiltrates environment variables and executes attacker-supplied code. The infection deploys staged payloads that profile hosts, connect to command-and-control servers, execute remote tasks, and enable file exfiltration. Developers are urged to enable Workspace Trust, apply security controls, and limit stored secrets.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/the420.in\/north-korea-npm-packages-pastebin-rat-campaign\/\">North Korean-Linked Hackers Target Developers Through 26 Suspicious npm Packages in New Cyber Campaign<\/a><\/h2>\n<p>Cybersecurity researchers have warned of a new threat campaign allegedly tied to North Korean actors, involving 26 malicious packages uploaded to the npm registry. The packages were disguised as legitimate development tools and used typosquatting to mimic popular libraries, increasing the chances of accidental installation. Believed to be a variant of the “Contagious Interview” campaign, the operation reportedly used Pastebin-based steganography to hide command-and-control (C2) addresses inside seemingly harmless text files. Each package executed an installation script that launched a payload from “vendor\/scrypt-js\/version.js,” which decoded hidden server domains by stripping zero-width Unicode characters and extracting embedded data. The malware supported Windows, macOS, and Linux, and used WebSocket communication to receive commands. It included modules for data theft, VS Code persistence, keylogging, browser credential harvesting, and crypto wallet targeting, while scanning repositories for exposed secrets. The activity has been tentatively linked to the North Korea-associated group Famous Chollima. Developers are urged to verify npm packages carefully.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/03\/new-chrome-vulnerability-let-malicious.html\">New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel<\/a><\/h2>\n<p>Cybersecurity researchers have detailed a patched high-severity flaw in Google Chrome that could have enabled privilege escalation and access to local files. Tracked as CVE-2026-0628 (CVSS 8.8), the issue stemmed from insufficient policy enforcement in the WebView tag and was fixed in version 143.0.7499.192\/.193 for Windows, Mac, and Linux in January 2026. Discovered by Palo Alto Networks Unit 42 researcher Gal Weizman, the flaw—codenamed “Glic Jack”—affected Chrome’s Gemini Live side panel, which loads content via a WebView component. Attackers could trick users into installing a malicious extension with basic permissions, allowing script injection into the Gemini panel. Successful exploitation could have granted access to the camera, microphone, screenshots, and local files. The bug exposed risks tied to embedding AI agents directly into browsers, where privileged components may introduce new attack surfaces despite existing extension security controls.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/thehackernews.com\/2026\/02\/malicious-stripeapi-nuget-package.html\">Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens<\/a><\/h2>\n<p>Cybersecurity researchers have uncovered a malicious package on the NuGet Gallery impersonating a legitimate library from Stripe to target the financial sector. The package, named StripeApi.Net, mimicked the official Stripe.net library, which has over 75 million downloads. Uploaded on February 16, 2026, by a user called “StripePayments,” it copied the legitimate package’s icon and nearly identical documentation, subtly altering the name to “Stripe-net.” The attacker also inflated download numbers to more than 180,000 across 506 versions to boost credibility. According to ReversingLabs, the package preserved most legitimate functionality but modified key methods to steal sensitive data, including Stripe API tokens, and exfiltrate them to a remote server. Because applications continued to compile and run normally, developers were unlikely to notice the compromise. The package was reported and removed before causing significant harm.<\/p>\n",
            "date_published": "2026-03-04T09:24:34+00:00",
            "date_modified": "2026-03-04T09:24:29+00:00",
            "_date_published_rfc2822": "Wed, 04 Mar 2026 09:24:34 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "239",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": []
            }
        },
        {
            "id": "238",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-173\/",
            "title": "Programmer’s Digest #173",
            "content_html": "<p class=\"lead\">02\/18\/2026-02\/25\/2026 SolarWinds Patches 4 Critical Serv-U 15.5 Flaws, Cline CLI 2.3.0 Supply Chain Attack And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/02\/solarwinds-patches-4-critical-serv-u.html\">SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution<\/a><\/h2>\n<p>SolarWinds has released updates for Serv-U file transfer software to fix four critical vulnerabilities that could allow remote code execution. All are rated 9.1 on the CVSS scale:<\/p>\n<ul>\n<li>CVE-2025-40538: Broken access control letting attackers create admin users and run code as root;<br \/>\n-CVE-2025-40539 & CVE-2025-40540: Type confusion flaws enabling execution of native code as root;<br \/>\n-CVE-2025-40541: Insecure direct object reference (IDOR) allowing native code execution as root.<\/li>\n<\/ul>\n<p>Exploitation requires administrative privileges, though risk is medium on Windows, as services often run under less-privileged accounts. These issues affect Serv-U version 15.5 and are fixed in 15.5.4. SolarWinds hasn’t reported active exploitation, but past Serv-U flaws (e. g., CVE-2021-35211, CVE-2021-35247, CVE-2024-28995) were targeted by hackers, including China-based group Storm-0322 (formerly DEV-0322).<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/thehackernews.com\/2026\/02\/malicious-npm-packages-harvest-crypto.html\">Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens<\/a><\/h2>\n<p>Cybersecurity researchers have disclosed an active supply chain worm campaign, dubbed SANDWORM_MODE, leveraging at least 19 malicious npm packages to steal credentials and cryptocurrency keys. The malware exfiltrates system information, tokens, environment secrets, and API keys, propagating via stolen npm and GitHub identities. Core features include a polymorphic engine, hook-based persistence, USB and SSH propagation fallbacks, and an “McpInject” module that targets AI coding assistants (Claude, Cursor, VS Code) to harvest SSH keys, environment files, and LLM API keys from providers like OpenAI, Anthropic, and Cohere. The attack unfolds in two stages, with a delayed secondary stage performing deeper harvesting, worm-like spread, and full exfiltration. Some packages include sleeper components or kill switches, which remain off by default. Users are urged to remove affected packages, rotate tokens and CI secrets, and review workflows. The campaign mirrors recent malicious npm activity, including buildrunner-dev and eslint-verify-plugin, which deliver RATs and agents targeting Windows, macOS, and Linux.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/thehackernews.com\/2026\/02\/cline-cli-230-supply-chain-attack.html\">Cline CLI 2.3.0 Supply Chain Attack Installed OpenClaw on Developer Systems<\/a><\/h2>\n<p>On February 17, 2026, a supply chain attack targeted the Cline CLI open-source package, installing OpenClaw—an AI agent—on developer and CI\/CD systems via the malicious cline@2.3.0 release. The attacker exploited a prompt injection vulnerability in the Cline GitHub Actions workflow, stealing a long-lived npm publish token to publish the compromised version. The post-install script silently installed OpenClaw globally, giving it system-level permissions, persistent presence, and potential access to credentials. The package was downloaded roughly 4,000 times over an eight-hour window. No evidence of data exfiltration or additional payloads was found, but OpenClaw’s unauthorized installation posed serious security risks, particularly in CI\/CD environments. The attack was mitigated by deprecating cline@2.3.0, revoking the token, and releasing cline@2.4.0. The incident highlights critical supply chain security weaknesses and the dangers of AI-driven automation in software workflows. Users are advised to remove OpenClaw and rotate any exposed credentials.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/securityaffairs.com\/188388\/malware\/wormable-xmrig-campaign-leverages-byovd-and-timed-kill-switch-for-stealth.html\">Wormable XMRig Campaign Leverages BYOVD and Timed Kill Switch For Stealth<\/a><\/h2>\n<p>Researchers uncovered a wormable cryptojacking campaign spreading via pirated software to deploy a custom XMRig miner. The malware uses a BYOVD exploit (Bring Your Own Vulnerable Driver) and a time-based logic bomb to evade detection and boost Monero mining efficiency by 15–50%. At the core is Explorer.exe, a persistent state machine that switches roles—installer, watchdog, payload manager, cleaner—based on command-line arguments. Payloads, including the miner, watchdogs, and a vulnerable driver (WinRing0x64.sys), are embedded in the binary, decompressed to hidden files, and disguised as legitimate software. A circular watchdog ensures the miner restarts if terminated, even killing Windows Explorer to maintain activity. The malware also spreads via USB drives, copying itself and creating malicious shortcuts. A kill switch set for December 23, 2025, triggers cleanup, suggesting a limited operational window. The campaign highlights evolving malware tactics, combining social engineering, worm-like propagation, kernel-level exploitation, and AI-like persistence to create a resilient, high-performance cryptojacking botnet.<\/p>\n",
            "date_published": "2026-02-25T17:43:50+00:00",
            "date_modified": "2026-02-25T17:43:39+00:00",
            "_date_published_rfc2822": "Wed, 25 Feb 2026 17:43:50 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "238",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": []
            }
        },
        {
            "id": "237",
            "url": "https:\/\/blog.humanfactor.ai\/all\/devdigest-172\/",
            "title": "Programmer’s Digest #172",
            "content_html": "<p class=\"lead\">02\/11\/2026-02\/18\/2026 Malicious npm and PyPI Packages Linked to Lazarus APT, Ivanti EPMM Exploit And More.<\/p>\n<div class=\"_line\"><\/div><h2>1. <a href=\"https:\/\/thehackernews.com\/2026\/02\/cisa-flags-four-security-flaws-under.html\">CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update<\/a><\/h2>\n<p>CISA has added four actively exploited flaws to its KEV catalog. The vulnerabilities include CVE-2026-2441, a use-after-free bug in Google Chrome that can enable heap corruption via a crafted webpage; CVE-2024-7694, an arbitrary file upload flaw in TeamT5 ThreatSonar Anti-Ransomware; CVE-2020-7796, an SSRF issue in Zimbra Collaboration Suite; and CVE-2008-0015, a buffer overflow in Microsoft Windows Video ActiveX Control that allows remote code execution.<\/p>\n<p>Google recently confirmed in-the-wild exploitation of CVE-2026-2441. Meanwhile, threat researchers previously observed large-scale abuse of the Zimbra flaw, and Microsoft warned the 2008 bug has been used to spread malware such as the Dogkild worm.<\/p>\n<p>Federal agencies must apply patches by March 10, 2026, to mitigate risks.<\/p>\n<div class=\"_line\"><\/div><h2>2. <a href=\"https:\/\/cyberpress.org\/patch-immediately-beyondtrust\/\">Patch Immediately: BeyondTrust Remote Code Execution Flaw Exploited in the Wild<\/a><\/h2>\n<p>BeyondTrust has released urgent updates to fix a critical remote code execution vulnerability (CVE-2026-1731, CVSS 9.9) affecting its Remote Support (RS) and Privileged Remote Access (PRA) products, with evidence of active exploitation. The flaw allows unauthenticated attackers to execute arbitrary system commands through specially crafted requests, potentially leading to full compromise, data theft, or service disruption.<\/p>\n<p>The issue was discovered by Hacktron AI using AI-driven variant analysis and disclosed in January 2026. Internet scans from Shodan indicate about 11,000 exposed instances, many of them on-premise deployments that remain vulnerable until patched.<\/p>\n<p>BeyondTrust automatically updated SaaS environments, but on-premise customers must apply patches or upgrade manually. Administrators are urged to verify systems quickly, as the vulnerability is easy to exploit and attractive to attackers seeking ransomware or lateral movement within enterprise networks.<\/p>\n<div class=\"_line\"><\/div><h2>3. <a href=\"https:\/\/securityaffairs.com\/188009\/apt\/malicious-npm-and-pypi-packages-llinked-to-lazarus-apt-fake-recruiter-campaign.html\">Malicious npm and PyPI Packages Linked to Lazarus APT Fake Recruiter Campaign<\/a><\/h2>\n<p>Researchers from ReversingLabs have uncovered malicious npm and PyPI packages tied to a fake recruitment campaign attributed to the North Korea-linked Lazarus Group. The operation, dubbed “graphalgo,” has been active since May 2025 and targets JavaScript and Python developers with fraudulent cryptocurrency-related job offers. Attackers pose as recruiters on LinkedIn, Facebook, and Reddit, directing victims to GitHub “interview tasks” that secretly depend on malicious packages. Some packages, such as bigmathutils, built trust and gained thousands of downloads before being updated to deliver malware.<\/p>\n<p>The campaign uses a multi-stage approach: creating fake companies and websites, distributing poisoned open-source dependencies, and installing remote-access trojans capable of executing commands, accessing files, and searching for cryptocurrency wallets.<\/p>\n<p>Researchers say the activity shows the hallmarks of Lazarus operations, including staged payloads, delayed malicious updates, encrypted communications, and a modular design that allows attackers to rotate front-end infrastructure while maintaining the same backend systems.<\/p>\n<div class=\"_line\"><\/div><h2>4. <a href=\"https:\/\/thehackernews.com\/2026\/02\/83-of-ivanti-epmm-exploits-linked-to.html\">83 % of Ivanti EPMM Exploits Linked to Single IP on Bulletproof Hosting Infrastructure<\/a><\/h2>\n<p>Most exploitation attempts against a critical flaw in Ivanti Endpoint Manager Mobile (EPMM) have been traced to a single IP address hosted on infrastructure run by PROSPERO. According to GreyNoise, 417 exploitation sessions were recorded between February 1 and 9, 2026, with 83% originating from one source. The activity targets CVE-2026-1281 (CVSS 9.8) and CVE-2026-1340, vulnerabilities that enable unauthenticated remote code execution. Ivanti confirmed limited real-world compromises, and several European organizations—including the Dutch Data Protection Authority and the European Commission—reported targeting attempts. Researchers also observed the same host exploiting unrelated flaws in Oracle WebLogic, GNU InetUtils, and GLPI, suggesting automated scanning. About 85% of probes used DNS callbacks to verify vulnerable systems without deploying malware, consistent with initial-access operations. Security experts advise patching immediately, auditing internet-facing MDM systems, reviewing DNS logs, and blocking PROSPERO’s network ranges to reduce risk.<\/p>\n<div class=\"_line\"><\/div><h2>5. <a href=\"https:\/\/thehackernews.com\/2026\/02\/dell-recoverpoint-for-vms-zero-day-cve.html\">Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024<\/a><\/h2>\n<p>A critical zero-day vulnerability (CVE-2026-22769, CVSS 10.0) in Dell RecoverPoint for Virtual Machines has been exploited since mid-2024 by a suspected China-linked threat cluster, UNC6201, according to researchers from Google Mandiant and Google Threat Intelligence Group. The flaw involves hard-coded credentials that allow unauthenticated attackers to gain root-level access, deploy web shells, and install backdoors such as BRICKSTORM and its newer variant GRIMBOLT. Attacks have primarily targeted North American organizations and appliances that often lack endpoint detection tools, enabling long-term persistence. Investigators observed techniques such as temporary “Ghost NICs” to move laterally and erase evidence. UNC6201 shares tactics with another China-linked cluster, UNC5221, though they are considered distinct. Separately, Dragos reported activity by Volt Typhoon compromising cellular gateways in energy sectors, then pivoting into operational technology networks, highlighting growing risks to industrial systems.<\/p>\n",
            "date_published": "2026-02-18T16:02:50+00:00",
            "date_modified": "2026-02-18T16:02:39+00:00",
            "_date_published_rfc2822": "Wed, 18 Feb 2026 16:02:50 +0000",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "237",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [],
                "og_images": []
            }
        }
    ],
    "_e2_version": 3849,
    "_e2_ua_string": "E2 (v3849; Aegea)"
}