The Caledonian-Record

From Faraja to Sepah: Iran's multiple security forces

Since the 1979 revolution, Iran has taken steps to ensure it is not reliant on a single security force but rather multiple structures to defend the Islamic republic against external ...
The Hacker News

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access

Interlock ransomware is actively exploiting CVE-2026-20131 (CVSS 10.0) in Cisco FMC, enabling unauthenticated remote code execution as root.
XDA Developers on MSN

Google kept featuring this Chrome extension for months after it turned malicious

How can an extension change hands with no oversight?
Ecommerce Fastlane

15 Best AEO Ecommerce Strategies To Drive Sales

Shoppers aren’t just scrolling through endless search results anymore; they are having direct conversations with AI to find ...
The Hacker News

ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More

ThreatsDay roundup covering stealthy attacks, phishing trends, exploit chains, and rising security risks across the threat landscape.

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

Inside Jeffrey Epstein’s Push to Cleanse His Past Online

After he left jail in 2009, Mr. Epstein hired a host of people to make him look better on Google, Wikipedia and many other places on the web.

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...
CSO Online

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...