Offensive Security

Wed, 27 May 2026

AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites

Microsoft has warned of an active cryptojacking campaign that makes use of artificial intelligence (AI) chatbot interactions as a mechanism for surfacing malicious download sites. "This emerging...

Read Article

ue, 26 May 2026

MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries

The Iranian hacking group known as MuddyWater has been linked to a new campaign affecting at least nine organizations across nine countries on four continents in the first quarter of 2026. The...

Read Article

ue, 26 May 2026

[THN Webinar] New AI DDoS Attacks Are Smarter. Learn How to Fight Back

Todos os dias, os hackers encontram novas maneiras de travar sites e roubar dados. Mas agora, algo mudou. Os hackers não estão mais trabalhando sozinhos. Eles agora estão usando ferramentas poderosas...

Read Article

ue, 26 May 2026

Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions

A Microsoft lançou atualizações para corrigir uma vulnerabilidade de execução remota de código que afeta o SharePoint e que pode ser explorada por malfeitores em ataques sem exigir o atendimento de...

Read Article

ue, 26 May 2026

MFA Prompt Bombing: Why Your Second Factor Isn't Saving You

Multi-factor authentication (MFA) was supposed to close a critical gap in identity security. It meant that, even if an attacker possessed the account credentials, they couldn't log in without the...

Read Article

ue, 26 May 2026

CERT-In Recommends 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks

The Indian Computer Emergency Response Team (CERT-In) has issued new guidelines requiring organizations to patch critical security vulnerabilities in internet-exposed systems within 12 hours of being...

Read Article