inionline.net https://validator.w3.org/feed/docs/rss2.html CISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks Continue New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets Guardian Agents: The Next Layer of Identity Governance Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack Name That Toon Contest Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant Russia Used Cellebrite on Jailed Activist’s iPhone Months After Sales Cutoff Google Details Turla’s New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks Russian APT ‘Gamaredon’ Upgrades Its Arsenal, Requiring New Defenses EdTech Attackers Shift From Schools to Their Software Suppliers Local Police Collusion Hampers Crackdown on Asian Scam Centers Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories Surviving the Mythos Era: Richard Bejtlich on the Case for NDR Europe Evolves Into Ransomware’s Favorite Region New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access Attackers Hit Cisco SD-WAN Flaw 2 Months Before Disclosure Oracle PeopleSoft Zero-Day 2026 FIFA World Cup Faces Surge in Cyber Threats Do CISOs Need a Code of Ethics? CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited More Malicious OpenClaw Skills Threaten AI Supply Chain Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks Apple’s MacOS Gap Lets Users Disable Security Tools Dawn of the Apex Agentic Adversary DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root Scope of Salesforce Attacks Expands as Icarus Leaks Data ‘Cordyceps’: Mushrooming Malicious Pull Requests Threaten Developer Workflows FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents Trump Order Sets 2030 Deadline for Federal Post-Quantum Crypto Migration GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns SocGholish Takedown Highlights Malicious TDS Threats FortiBleed Attackers Turn Firewalls Into Credential Stealers as Heists Persist Agentic AI: The Weapon That No Longer Needs a Warrior Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries Crypto Heist Fueled by Elaborate Fake Reputation-Boosting Campaign 29-Year-Old Squid Proxy Bug ‘Squidbleed’ Can Leak Cleartext HTTP Requests New OXLOADER Loader Uses Malicious Google Ads to Deliver CastleStealer Google Sets Sept. 30 Deadline for Android Developer Verification in Four Countries Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs