ZerOwl

New Malware Toolkit Sends Users to Malicious Websites While the URL Stays the Same

Browser attacks are now much more coordinated and dangerous than they were in the past This article explores stanley malware. .

New Malware Toolkit Sends Users to Malicious Websites While the URL Stays the Same

CYBER ATTACKJan 26, 2026

Browser attacks are now much more coordinated and dangerous than they were in the past This article explores stanley malware. .

A Tax Phishing Campaign Targets Indian Users Blackmoon Malware Delivery

CYBERSECURITYZerowl

As part of a suspected cyber espionage campaign, cybersecurity researchers have found an ongoing campaign that targets Indian users with a multi-stage

A Tax Phishing Campaign Targets Indian Users Blackmoon Malware Delivery

CYBERSECURITYJan 26, 2026

As part of a suspected cyber espionage campaign, cybersecurity researchers have found an ongoing campaign that targets Indian users with a multi-stage

With 1.5 million installs, malicious VS Code AI extensions steal developer source code.

CYBERSECURITYZerowl

Two malicious Microsoft Visual Studio Code (VS Code) extensions have been found by cybersecurity researchers This article explores code extensions

With 1.5 million installs, malicious VS Code AI extensions steal developer source code.

CYBERSECURITYJan 26, 2026

Two malicious Microsoft Visual Studio Code (VS Code) extensions have been found by cybersecurity researchers This article explores code extensions

DPRKs Konni Uses an AI-Generated Backdoor to Target Blockchain Developers

CYBERSECURITYZerowl

Once again, North Korean threat actors are using an ongoing phishing campaign to target developers.

DPRKs Konni Uses an AI-Generated Backdoor to Target Blockchain Developers

CYBERSECURITYJan 26, 2026

Once again, North Korean threat actors are using an ongoing phishing campaign to target developers.

New DPRK Interview Campaign Leverages Fake Fonts to Deploy Malware

CYBER ATTACKZerowl

Software developers are the target of a sophisticated supply chain attack by North Korea's Lazarus Group under the "Fake Font" campaign This article explores

New DPRK Interview Campaign Leverages Fake Fonts to Deploy Malware

CYBER ATTACKJan 26, 2026

Software developers are the target of a sophisticated supply chain attack by North Korea's Lazarus Group under the "Fake Font" campaign This article explores

A New Cybersecurity Framework to Safeguard Embedded Systems Is Released by MITRE

CYBER ATTACKZerowl

To aid in the security of embedded systems utilized in vital infrastructure and defense technologies throughout the United States, a new Embedded Systems

A New Cybersecurity Framework to Safeguard Embedded Systems Is Released by MITRE

CYBER ATTACKJan 26, 2026

To aid in the security of embedded systems utilized in vital infrastructure and defense technologies throughout the United States, a new Embedded Systems

Hackers from Lazarus are actively targeting European drone manufacturers.

CYBER ATTACKZerowl

A new wave of targeted attacks against European drone manufacturers and defense contractors has been initiated by Lazarus, a sophisticated hacking group

Hackers from Lazarus are actively targeting European drone manufacturers.

CYBER ATTACKJan 26, 2026

A new wave of targeted attacks against European drone manufacturers and defense contractors has been initiated by Lazarus, a sophisticated hacking group

A New Instagram Vulnerability Makes Private Posts Visible to Anyone

CYBER ATTACKZerowl

Instagram's mobile web interface had a server-side authorization flaw that made it possible for totally unauthenticated users to view private account posts

A New Instagram Vulnerability Makes Private Posts Visible to Anyone

CYBER ATTACKJan 26, 2026

Instagram's mobile web interface had a server-side authorization flaw that made it possible for totally unauthenticated users to view private account posts

As PoC is released, more than 800K GNU InetUtils telnetd instances are vulnerable to RCE attacks.

CYBER ATTACKZerowl

About 800,000 exposed instances of GNU InetUtils telnetd are susceptible to remote code execution attacks, making it a serious security risk.

As PoC is released, more than 800K GNU InetUtils telnetd instances are vulnerable to RCE attacks.

CYBER ATTACKJan 26, 2026

About 800,000 exposed instances of GNU InetUtils telnetd are susceptible to remote code execution attacks, making it a serious security risk.

Critical Zero-Day Vulnerabilities in NetSupport Manager Turn on Remote Code Execution

CYBER ATTACKZerowl

Two serious authentication bypass vulnerabilities (CVE-2025-34164 and CVE-2025-34165) in NetSupport Manager, a reputable remote access tool used by many

Critical Zero-Day Vulnerabilities in NetSupport Manager Turn on Remote Code Execution

CYBER ATTACKJan 26, 2026

Two serious authentication bypass vulnerabilities (CVE-2025-34164 and CVE-2025-34165) in NetSupport Manager, a reputable remote access tool used by many

Top 5 this week

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

CYBERSECURITYZerowl

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

Top 10 Best VPN For Chrome in 2026

CYBER ATTACKZerowl

Top 10 Best VPN For Chrome in 2026

Top 10 Best User Access Management Tools in 2026

CYBER ATTACKZerowl

Top 10 Best User Access Management Tools in 2026

North Korea-Linked Hackers Compromise Axios npm Package in Major Supply Chain Attack

CYBER ATTACKZerowl

North Korea-Linked Hackers Compromise Axios npm Package in Major Supply Chain Attack

Microsoft Pushes Forced Upgrade to Windows 11 Version 24H2 for Unmanaged PCs

CYBER ATTACKZerowl

LATEST

New Malware Toolkit Sends Users to Malicious Websites While the URL Stays the Same

New Malware Toolkit Sends Users to Malicious Websites While the URL Stays the Same

A Tax Phishing Campaign Targets Indian Users Blackmoon Malware Delivery

A Tax Phishing Campaign Targets Indian Users Blackmoon Malware Delivery

With 1.5 million installs, malicious VS Code AI extensions steal developer source code.

With 1.5 million installs, malicious VS Code AI extensions steal developer source code.

DPRKs Konni Uses an AI-Generated Backdoor to Target Blockchain Developers

DPRKs Konni Uses an AI-Generated Backdoor to Target Blockchain Developers

New DPRK Interview Campaign Leverages Fake Fonts to Deploy Malware

New DPRK Interview Campaign Leverages Fake Fonts to Deploy Malware

A New Cybersecurity Framework to Safeguard Embedded Systems Is Released by MITRE

A New Cybersecurity Framework to Safeguard Embedded Systems Is Released by MITRE

Hackers from Lazarus are actively targeting European drone manufacturers.

Hackers from Lazarus are actively targeting European drone manufacturers.

A New Instagram Vulnerability Makes Private Posts Visible to Anyone

A New Instagram Vulnerability Makes Private Posts Visible to Anyone

As PoC is released, more than 800K GNU InetUtils telnetd instances are vulnerable to RCE attacks.

As PoC is released, more than 800K GNU InetUtils telnetd instances are vulnerable to RCE attacks.

Critical Zero-Day Vulnerabilities in NetSupport Manager Turn on Remote Code Execution

Critical Zero-Day Vulnerabilities in NetSupport Manager Turn on Remote Code Execution

Top 5 this week

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

Top 10 Best VPN For Chrome in 2026

Top 10 Best VPN For Chrome in 2026

Top 10 Best User Access Management Tools in 2026

Top 10 Best User Access Management Tools in 2026

North Korea-Linked Hackers Compromise Axios npm Package in Major Supply Chain Attack

North Korea-Linked Hackers Compromise Axios npm Package in Major Supply Chain Attack

Microsoft Pushes Forced Upgrade to Windows 11 Version 24H2 for Unmanaged PCs

Microsoft Pushes Forced Upgrade to Windows 11 Version 24H2 for Unmanaged PCs