Threat Analyst
Artem specializes in analyzing large-scale data breaches and social engineering methods. He believes that the primary vulnerability in any system isn't code-it's human behavior. In his articles, he deconstructs complex cybercriminal schemes and transforms them into actionable security guidelines.
Two CVSS 10.0 flaws top the March 12 CVE digest, with Himmelblau's Azure Entra ID bypass letting attackers authenticate to any tenant and a Jellyfin GitHub Actions flaw enabling full …
Read more →
An Iran-linked group turned Stryker's own device management against it, remotely wiping 200,000+ systems through Microsoft Intune. The Fortune 500 medtech firm filed an SEC disclosure. Handala called it retaliation …
Read more →
A poisoned Git tag turned a security vendor's own GitHub Action into a backdoor. The C2 implant in xygeni-action ran for seven days, giving attackers access to repo secrets on …
Read more →
420 new CVEs dropped on March 11, with three scoring critical. A WordPress LMS auth bypass (CVSS 9.8) threatens 30,000 sites, a gas station system has unauthenticated RCE, and Fortinet …
Read more →
No confirmed exploitation, but six flaws tagged Exploitation More Likely. Microsoft's March 2026 Patch Tuesday fixes 83 CVEs, two zero-days in SQL Server and .NET, and critical Office RCEs exploitable …
Read more →
Two Spanish government agencies lost employee data in 48 hours. The Ministerio de Hacienda leak includes IBANs, national IDs, and government emails offered for free. The same actor hit the …
Read more →
A nother ingress-nginx annotation injection (CVSS 8.8) continues a year-long chain of Kubernetes controller flaws that started with IngressNightmare. Seven Unisoc NR modem bugs can crash Android phones remotely. Budibase …
Read more →
An open-source tool that tracks body poses through walls using $54 in Wi-Fi hardware has 31,700 GitHub stars. RuView builds on Carnegie Mellon research and runs on ESP32-S3 chips, but …
Read more →
March 9 brought 117 new CVEs but no critical-severity entries. The two worth tracking are an unpatched UltraVNC DLL hijack with a public exploit, and two Tiandy surveillance flaws from …
Read more →
Sponsored Google results for "Claude Code install" lead to pixel-perfect clones of Anthropic's documentation that deliver Amatera Stealer. Push Security found at least 17 fake domains. Both macOS and Windows …
Read more →
Over 221 CVEs dropped in two days — headlined by a CVSS 9.9 RCE in Tencent's WeKnora LLM framework, a Parse Server authentication bypass at 9.3, and a WooCommerce CSRF …
Read more →
A fake CleanMyMac website tricks macOS users into running a Terminal command that installs SHub Stealer — an infostealer targeting 14 browsers and 102 crypto extensions. Worse, it silently backdoors …
Read more →