Malicious VS Code Icon Theme Targets Windows & macOS
A fake VS Code extension pretending to be the Material Icon Theme was found targeting Windows and macOS users. Attackers added hidden backdoor files into the marketplace package, giving them [...]
PoC Released for Critical Outlook Zero-Click RCE Bug
A Proof‑of‑Concept exploit has been released for a critical remote code execution vulnerability in Microsoft Outlook, tracked as CVE‑2024‑21413. The flaw, known as “MonikerLink,” allows attackers to bypass Outlook’s Protected [...]
Android Users Hit by New Albiriox Malware
Albiriox is a new Android malware that recently appeared on cybercrime forums. It offers advanced remote-access features and is sold as a Malware-as-a-Service tool. Researchers at Cleafy found that the [...]
GitLab Patches Critical Auth & DoS Bugs
GitLab has released important security updates for both its Community Edition (CE) and Enterprise Edition (EE) to fix several serious vulnerabilities. The new patches — versions 18.6.1, 18.5.3, and 18.4.5 [...]
Legacy Python Bugs Enable PyPI Attacks via Domain Hijack
Hidden vulnerabilities in old Python code can create serious risks for today’s development environments. A recent example involves legacy bootstrap scripts used by the zc.buildout tool. These outdated scripts still [...]
FHN 
