Offensive Security

Sun, 12 Apr 2026

Campaign uses AI to automate large-scale attacks

Phishing campaign uses device code authentication flow to compromise organizational accounts. Automated and dynamic attack increases success rate.

Read Article

Sun, 12 Apr 2026

How was the theft of US$ 280 million on the Drift exchange

Drift Protocol, a Solana-based DEX, suffered a $280M crypto theft linked to North Korean-backed hackers. The attack involved months of planning and targeted collaboration.

Read Article

Sun, 12 Apr 2026

Critical Marimo pre-auth RCE flaw now under active exploitation

A critical remote code execution vulnerability in Marimo was exploited within 10 hours of disclosure, risking sensitive data exposure.

Read Article

Sun, 12 Apr 2026

Week in review: Windows zero-day exploit leaked, Patch Tuesday forecast

Cloudflare advances its post-quantum security target to 2029 amid new research. AI integration shapes the future design of 6G networks.

Read Article

Sun, 12 Apr 2026

Adobe Patches Reader Zero-Day Exploited for Months

Adobe released emergency patches for a critical Acrobat and Reader zero-day exploited in the wild. The vulnerability allows arbitrary code execution.

Read Article

Sun, 12 Apr 2026

CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads

CPUID was compromised for less than 24 hours, serving malicious executables and deploying the STX RAT trojan. The breach exploited a secondary API feature without affecting signed original files.

Read Article