Guides, playbooks, and learning resources to level up your cybersecurity knowledge and keep your organization secure.
DEEP#DOOR embeds a Python RAT in a dropper script, using bore[.]pub C2 to steal credentials and evade Windows defenses, complicating detection.
An attacker could have planted a malicious configuration to execute commands outside the sandbox.
View CSAF
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
Claroty researchers discovered two vulnerabilities that can be exploited for security bypass and remote code execution.
The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been leveraged in attempts since late February.
44 GitHub facades and Ethereum smart contracts power a March 2026 admin-targeted campaign, enabling resilient C2 rotation and enterprise compromise.
