News

The zero-day that could've compromised every Cursor and Windsurf user
Learn how one overlooked flaw in OpenVSX discovered by Koi Secureity could've let attackers hijack millions of dev machines ...
Pen Test Partners6d
Sil3ncer Deployed – RCE, Porn Diversion, and Ransomware on an SFTP-only Server
TL;DR Introduction We investigated a ransomware incident on a Windows Server 2012 host running in an SFTP-only role. The ...
Infosecurity Magazine2d
North Korean Actors Expand Contagious Interview Campaign with New Malware Loader
Socket has identified a new malware loader called XORIndex incorporated into malicious packages published to the npm registry ...
Pen Test Partners6d
Sil3ncer Deployed – Exploitation, Porn and Ransomware on an SFTP-only Server
TL;DR Introduction We investigated a ransomware incident on a Windows Server 2012 host running in an SFTP-only role. The ...
Decrypt6d
Malicious Pull Request Inserted Into Ethereum Code Extension: Research
Cybersecurity firm ReversingLabs uncovered two lines of malicious code in an update forETHCode, an open source suite of tools ...
Visual Studio Magazine3d
VS Code v1.102 Doubles Down on GitHub Copilot and AI-Enhanced Development
VS Code’s June 2025 update supercharges GitHub Copilot with new chat customization tools, smarter inline completions, and an ...
Cybernews3d
“Shadowy developer” targets crypto users by compromising legitimate software
Cybersecurity firm ReversingLabs (RL) found that GitHub user Airez299 had compromised ETHcode, an extension created by 7finney, a developer of ethereum blockchain tools, by adding just two lines of ...
TechAnnouncer3d
Unlocking Potential: A Comprehensive Guide to DeepSeek AI
Enabling Code Completion: If you’re using DeepSeek AI for coding, turning on code-specific features is a no-brainer. It’ll ...