Security researchers have uncovered a malicious campaign involving fake npm packages designed to impersonate integrations for the n8n workflow automation platform. The goal is simple but dangerous: steal OAuth tokens and sensitive credentials from developers and organizations. Investigators identified at…
European law enforcement authorities have arrested 34 people in Spain over their alleged links to Black Axe, a transnational criminal organization long associated with cyber crime and other serious offenses. Europol said the arrests followed a coordinated operation led by…
An Iranian-linked hacking group known as MuddyWater has been connected to a new spear-phishing operation aimed at organizations in the diplomatic, maritime, financial, and telecommunications sectors across the Middle East. The activity centers on a Rust-based malware implant researchers have…
The Cybersecurity and Infrastructure Security Agency (CISA) has officially closed ten Emergency Directives after determining that required remediation actions have been completed or are now enforced through broader federal vulnerability management policies. The directives, which span incidents and vulnerabilities disclosed…
Trend Micro has rolled out security updates to fix several serious flaws affecting on-premise deployments of Apex Central for Windows. Among them is a critical vulnerability that could allow attackers to execute malicious code with the highest system privileges. The…
As organizations prepare for 2026, cybersecurity predictions are everywhere. But many of these outlooks are shaped by headlines and speculation rather than solid evidence. The real challenge is no longer finding predictions. It is figuring out which ones point to…
Researchers uncovered a phishing setup that relies on a concealed HTML form element containing a webhook[.]site URL. JavaScript embedded in the page quietly sends a “page opened” signal, captures any credentials entered by the victim, and forwards them to the…
If you’re using the @adonisjs/bodyparser npm package, you should update to the latest version. A newly disclosed high-severity vulnerability could allow a remote attacker to write arbitrary files on your server if they can reach a file upload endpoint. The…
n8n recently introduced a task runner-based native Python option to improve security isolation. This feature first appeared in version 1.111.0 as an optional setting and could be turned on using the environment variables N8N_RUNNERS_ENABLED and N8N_NATIVE_PYTHON_RUNNER. With the release of…
Several popular AI-driven code editors built on Visual Studio Code are raising new supply-chain security concerns after researchers found they recommend extensions that don’t actually exist in the Open VSX registry. The affected tools include VS Code forks such as…
