The Marron Group

The Marron Group https://validator.w3.org/feed/docs/rss2.html Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025 Researchers Null-Route Over 550 Kimwolf and Aisuru Botnet Command Servers CarGurus – Data Breach – February 2026 Long-Running Web Skimming Campaign Steals Credit Cards From Online Checkout Pages AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks ThreatsDay Bulletin: GhostAd Drain, macOS Attacks, Proxy Botnets, Cloud Exploits, and 12+ Stories OpenAI to Show Ads in ChatGPT for Logged-In U.S. Adults on Free and Go Plans Black Basta Ransomware Leader Added to EU Most Wanted and INTERPOL Red Notice Google Gemini Prompt Injection Flaw Exposed Private Calendar Data via Malicious Invites n8n Supply Chain Attack Abuses Community Nodes to Steal OAuth Tokens GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection Europol Arrests 34 Black Axe Members in Spain Over €5.9M Fraud and Organized Crime MuddyWater Launches RustyWater RAT via Spear-Phishing Across Middle East Sectors Webinar: Learn How AI-Powered Zero Trust Detects Attacks with No Files or Indicators Two Chrome Extensions Caught Stealing ChatGPT and DeepSeek Chats from 900,000 Users Cybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing Campaign The ROI Problem in Attack Surface Management Russia-Aligned Hackers Abuse Viber to Target Ukrainian Military and Government China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia Trust Wallet Chrome Extension Hack Drains $8.5M via Shai-Hulud Supply Chain Attack WhatsApp Worm Spreads Astaroth Banking Trojan Across Brazil via Contact Auto-Messaging Silver Fox Targets Indian Users With Tax-Themed Emails Delivering ValleyRAT Malware CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory UK MPs face rise in phishing attacks on messaging apps ⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper Two Chrome Extensions Caught Secretly Stealing Credentials from Over 170 Sites Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence UK Foreign Office victim of cyber-attack in October, says Chris Bryant U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks Trust Wallet Chrome Extension Breach Caused $7 Million Crypto Loss via Malicious Code The Com: the growing cybercrime network behind recent Pornhub hack Hackers access Pornhub’s premium users’ viewing habits and search history SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware Featured Chrome Browser Extension Caught Intercepting Millions of Users’ AI Chats Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers Denmark says Russia was behind two ‘destructive and disruptive’ cyber-attacks Online child sexual abuse surges by 26% in year as police say tech firms must act Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories Home