NetmanageIT CTO Corner

Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2

Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2

LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

Hackers exploit file upload bug in Breeze Cache WordPress plugin

Hackers exploit file upload bug in Breeze Cache WordPress plugin

BleepingComputer

Bitwarden CLI npm package compromised to steal developer credentials

Bitwarden CLI npm package compromised to steal developer credentials

BleepingComputer

Trigona ransomware attacks use custom exfiltration tool to steal data

Trigona ransomware attacks use custom exfiltration tool to steal data

BleepingComputer

UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware

UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware

New Checkmarx supply-chain breach affects KICS analysis tool

New Checkmarx supply-chain breach affects KICS analysis tool

BleepingComputer

Cosmetics giant Rituals discloses data breach affecting customers

Cosmetics giant Rituals discloses data breach affecting customers

BleepingComputer

Regular Password Resets Aren’t as Safe as You Think

Regular Password Resets Aren’t as Safe as You Think

BleepingComputer

Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign

Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign

Microsoft: Some Teams users can’t join meetings after Edge update

Microsoft: Some Teams users can’t join meetings after Edge update

BleepingComputer

ThreatsDay Bulletin: $290M DeFi Hack, macOS LoL Abuse, ProxySmart SIM Farms +25 New Stories

ThreatsDay Bulletin: $290M DeFi Hack, macOS LoL Abuse, ProxySmart SIM Farms +25 New Stories

UK warns of Chinese hackers using proxy networks to evade detection

UK warns of Chinese hackers using proxy networks to evade detection

BleepingComputer

New GopherWhisper APT group abuses Outlook, Slack, Discord for comms

New GopherWhisper APT group abuses Outlook, Slack, Discord for comms

BleepingComputer

[Webinar] Mythos Reality Check: Beating Automated Exploitation at AI Speed

[Webinar] Mythos Reality Check: Beating Automated Exploitation at AI Speed

Project Glasswing Proved AI Can Find the Bugs. Who's Going to Fix Them?

Project Glasswing Proved AI Can Find the Bugs. Who's Going to Fix Them?

CISA orders feds to patch BlueHammer flaw exploited as zero-day

CISA orders feds to patch BlueHammer flaw exploited as zero-day

BleepingComputer

China-Linked GopherWhisper Infects 12 Mongolian Government Systems with Go Backdoors

China-Linked GopherWhisper Infects 12 Mongolian Government Systems with Go Backdoors

Vercel Finds More Compromised Accounts in Context.ai-Linked Breach

Vercel Finds More Compromised Accounts in Context.ai-Linked Breach

Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case

Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case

Apple fixes iOS bug that retained deleted notification data

Apple fixes iOS bug that retained deleted notification data

BleepingComputer

New Mirai campaign exploits RCE flaw in EoL D-Link routers

New Mirai campaign exploits RCE flaw in EoL D-Link routers

BleepingComputer

Kyber ransomware gang toys with post-quantum encryption on Windows

Kyber ransomware gang toys with post-quantum encryption on Windows

BleepingComputer

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens