AZGAD Security

· US · azgadsecurity.com

Email archive since 2018

US · azgadsecurity.com

30 emails found

Emails

AZGAD Security
US · June 3, 2026 8:54pm

AZGAD Security
US · June 3, 2026 8:54pm

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT

Cybersecurity researchers have flagged a new malspam campaign that makes use of Google's DoubleClick domain as a way to evade detection and ultimately deliver a remote access trojan (RAT) named DesckVB RAT. "Before the victim ever reaches attacker-contr… Read on blog or Reader
AZGAD Security
US · June 3, 2026 8:54pm

AZGAD Security
US · June 3, 2026 8:54pm

WhatsApp, Slack Notifications Could Hijack Google Gemini on Android

A single poisoned notification from WhatsApp, Slack, SMS, Signal, Instagram, or Messenger could have hijacked Google Gemini's voice assistant on Android and made it open a victim's connected windows, fake a message from their boss, push the phone into a … Read on blog or Reader
AZGAD Security
US · June 2, 2026 1:17pm

AZGAD Security
US · June 2, 2026 1:17pm

AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It.

AI-driven exploitation timelines are rapidly shrinking, and they are not going to stop shrinking. Vulnerabilities are being discovered, reproduced, and weaponized faster than ever in the history of enterprise security. As a result, the window between a v… Read on blog or Reader
AZGAD Security
US · June 2, 2026 11:50am

AZGAD Security
US · June 2, 2026 11:50am

How Leading Organizations Are Turning EDR Into Operational Resilience

Most organizations now recognize that endpoint protection alone is no longer sufficient. That's why adoption of endpoint detection and response (EDR) has accelerated rapidly in recent years. Organizations understand that modern attacks move faster, evad… Read on blog or Reader
AZGAD Security
US · June 2, 2026 10:35am

AZGAD Security
US · June 2, 2026 10:35am

Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT

Cybersecurity researchers have disclosed details of a spear-phishing campaign likely undertaken by the Pakistan-aligned SideCopy group targeting Afghanistan's Ministry of Finance with an open-source remote access trojan called Xeno RAT. "The campaign op… Read on blog or Reader
AZGAD Security
US · June 2, 2026 6:18am

AZGAD Security
US · June 2, 2026 6:18am

Dashlane Discloses Brute-Force Attack, Encrypted Vaults of Fewer Than 20 Users Downloaded

Password manager Dashlane has disclosed that "fewer than" 20 users on the personal subscription plan had their encrypted vaults downloaded following a brute-force attack launched by an unknown party. On May 31, 2026, the company said an "external" threa… Read on blog or Reader
AZGAD Security
US · June 1, 2026 7:31pm

AZGAD Security
US · June 1, 2026 7:31pm

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm

A new Mini Shai-Hulud supply chain attack campaign, codenamed Miasma, has compromised @redhat-cloud-services packages to steal credentials and secrets from developer machines and deliver a self-propagating worm. "This is effectively a Mini Shai-Hulud ca… Read on blog or Reader
AZGAD Security
US · June 1, 2026 2:21pm

AZGAD Security
US · June 1, 2026 2:21pm

China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan

A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent. According to Seqrite Labs, targets of the campaign include government, res… Read on blog or Reader
AZGAD Security
US · May 31, 2026 12:56pm

AZGAD Security
US · May 31, 2026 12:56pm

Dutch Authorities Dismantle Botnet Linked to 17 Million Infected Devices

Dutch authorities have announced the takedown of a botnet that enslaved millions of infected devices, including computers, tablets, smartphones, and IoT devices, to carry out malicious attacks. The bot network, per the Dutch Politie and the National Cyb… Read on blog or Reader
AZGAD Security
US · May 30, 2026 8:14am

AZGAD Security
US · May 30, 2026 8:14am

PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation

Palo Alto Networks has warned that a recently disclosed medium-severity security flaw impacting PAN-OS and Prisma Access has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-0257 (CVSS score: 7.8), refers to a case of a… Read on blog or Reader
AZGAD Security
US · May 29, 2026 4:42pm

AZGAD Security
US · May 29, 2026 4:42pm

Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit

An unknown threat actor has been observed using a large language model (LLM) agent to conduct post-compromise actions after obtaining initial access following the exploitation of a publicly-accessible Marimo network using a recently disclosed vulnerabili… Read on blog or Reader
AZGAD Security
US · May 28, 2026 2:18pm

AZGAD Security
US · May 28, 2026 2:18pm

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

Every time you think the industry has finally stopped doing some reckless, low-effort crap, somebody spins up a fresh box full of sketchy loaders, fake installers, recycled social-engineering bait, and enough exposed infrastructure to make you wonder if … Read on blog or Reader
AZGAD Security
US · May 28, 2026 2:18pm

AZGAD Security
US · May 28, 2026 2:18pm

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

Microsoft has come out strongly in favor of Coordinated Vulnerability Disclosure (CVD), urging the research community to share their findings and give affected vendors an opportunity to better understand the impact and address them before they are public… Read on blog or Reader
AZGAD Security
US · May 28, 2026 12:52pm

AZGAD Security
US · May 28, 2026 12:52pm

New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI “Power users”

State of AI Usage Report 2026 (full report here) by LayerX Security reveals the extent of the enterprise AI visibility gap and why most organizations still don't understand where their AI exposure is actually coming from. The research shows that enterpri… Read on blog or Reader
AZGAD Security
US · May 28, 2026 10:01am

AZGAD Security
US · May 28, 2026 10:01am

JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware

A new campaign orchestrated by a previously undocumented threat actor has targeted cryptocurrency organizations with an aim to facilitate digital asset theft using recruitment-themed social engineering and bespoke macOS malware. "These campaigns leverag… Read on blog or Reader
AZGAD Security
US · May 27, 2026 5:14pm

AZGAD Security
US · May 27, 2026 5:14pm

Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users

Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android devices with Grandoreiro and BTMOB malware, respectively. That's according to new findings from WatchGuard and ESET, which have ob… Read on blog or Reader
AZGAD Security
US · May 27, 2026 2:52pm

AZGAD Security
US · May 27, 2026 2:52pm

3 SOC Steps that Shut Down Incident Risks Early

Most organizations still picture cyber defense as a fortress problem: build stronger walls, add more guards, buy another detection engine. But modern incidents rarely crash through the front gate. They drift in disguised as routine activity, hide inside … Read on blog or Reader
AZGAD Security
US · May 26, 2026 12:37pm

AZGAD Security
US · May 26, 2026 12:37pm

Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions

Microsoft has rolled out updates to fix a remote code execution vulnerability impacting SharePoint that could be exploited by bad actors in attacks without requiring any specialized conditions to be met. The vulnerability, tracked as CVE-2026-45659, car… Read on blog or Reader
AZGAD Security
US · May 26, 2026 12:37pm

AZGAD Security
US · May 26, 2026 12:37pm

New AI DDoS Attacks Are Smarter. Learn How to Fight Back in This Webinar

Every single day, hackers are finding new ways to crash websites and steal data. But right now, something has changed. Hackers are no longer working alone. They are now using powerful Artificial Intelligence (AI) tools to make their attacks faster, stro… Read on blog or Reader
AZGAD Security
US · May 26, 2026 11:20am

AZGAD Security
US · May 26, 2026 11:20am

MFA Prompt Bombing: Why Your Second Factor Isn’t Saving You

Multi-factor authentication (MFA) was supposed to close a critical gap in identity security. It meant that, even if an attacker possessed the account credentials, they couldn't log in without the second factor. While that logic was sound, attackers have … Read on blog or Reader
AZGAD Security
US · May 26, 2026 10:16am

AZGAD Security
US · May 26, 2026 10:16am

CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks

The Indian Computer Emergency Response Team (CERT-In) has issued new guidelines requiring organizations to patch critical security vulnerabilities in internet-exposed systems within 12 hours of being flagged where "feasible" to safeguard against potentia… Read on blog or Reader
AZGAD Security
US · May 25, 2026 1:16pm

AZGAD Security
US · May 25, 2026 1:16pm

The Alert Firehose Finally Meets Its Match

Ask a cybersecurity pro about Network Detection and Response (NDR) and you might still hear "Noisy," "Too much data." But ask the teams running NDR that includes agentic AI capabilities and you'll hear they're actually using it to catch threats earlier, … Read on blog or Reader
AZGAD Security
US · May 25, 2026 1:16pm

AZGAD Security
US · May 25, 2026 1:16pm

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Threat actors are exploiting a recently disclosed critical security flaw in Ghost CMS to inject malicious JavaScript code with an aim to fuel ClickFix attacks. According to QiAnXin XLab, the activity involves the exploitation of CVE-2026-26980 (CVSS sco… Read on blog or Reader
AZGAD Security
US · May 25, 2026 11:54am

AZGAD Security
US · May 25, 2026 11:54am

Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms

Cybersecurity researchers have shed light on a cross-platform malware called RemotePE that has been put to use by the North Korea-linked Lazarus Group in attacks targeting financial and cryptocurrency organizations. RemotePE, per NCC Group subsidiary Fo… Read on blog or Reader
AZGAD Security
US · May 24, 2026 1:38am

AZGAD Security
US · May 24, 2026 1:38am

What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface

In Your Biggest Security Risk Isn't Malware — It's What You Already Trust, we made a simple argument: the most dangerous activity inside most organizations no longer looks like an attack. It looks like administration. PowerShell, WMIC, netsh, Certutil,… Read on blog or Reader
AZGAD Security
US · May 24, 2026 1:38am

AZGAD Security
US · May 24, 2026 1:38am

Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence

Cybersecurity researchers have disclosed a set of four security flaws in OpenClaw that could be chained to achieve data theft, privilege escalation, and persistence. The vulnerabilities, collectively dubbed Claw Chain by Cyera, can permit… Read on blog or Reader
AZGAD Security
US · May 24, 2026 1:38am

AZGAD Security
US · May 24, 2026 1:38am

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

The Russian state-sponsored hacking group known as Turla has transformed its custom backdoor Kazuar into a modular peer-to-peer (P2P) botnet that's engineered for stealth and persistent access to compromised hosts. Turla, per the U.S. Cy… Read on blog or Reader
AZGAD Security
US · May 24, 2026 1:38am

AZGAD Security
US · May 24, 2026 1:38am

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

A critical security vulnerability impacting the Funnel Builder plugin for WordPress has come under active exploitation in the wild to inject malicious JavaScript code into WooCommerce checkout pages with the goal of stealing payment data. De… Read on blog or Reader
AZGAD Security
US · May 24, 2026 1:38am

AZGAD Security
US · May 24, 2026 1:38am

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Grafana has disclosed that an "unauthorized party" obtained a token that granted them the ability to access the company's GitHub environment and download its codebase. "Our investigation has determined that no customer data or personal information wa… Read on blog or Reader
AZGAD Security
US · May 24, 2026 1:38am

AZGAD Security
US · May 24, 2026 1:38am

The New Phishing Click: How OAuth Consent Bypasses MFA

In February 2026, a phishing-as-a-service (PhaaS) platform called EvilTokens went live. Within five weeks, it had compromised more than 340 Microsoft 365 organizations across five countries. The targets of the platform received a message asking th… Read on blog or Reader

AZGAD Security

Unlock more emails from AZGAD Security.

Spot promos, launches, and creative shifts.

Get started free