Offensive Security

Mon, 13 Apr 2026

Stolen Rockstar Games analytics data leaked by extortion gang

Rockstar Games experienced a data breach due to stolen authentication tokens from a recent Anodot security incident. Over 78.6 million records were leaked by the ShinyHunters extortion gang.

Read Article

Mon, 13 Apr 2026

Critical flaw in wolfSSL library enables forged certificate use

A critical vulnerability in wolfSSL's ECDSA signature verification can allow acceptance of forged certificates. This impacts numerous embedded and IoT devices globally.

Read Article

Mon, 13 Apr 2026

FBI takedown of W3LL phishing service leads to developer arrest

FBI and Indonesian authorities dismantled the global W3LL phishing platform, arresting its developer. Over $20 million fraud attempts were linked to this phishing kit marketplace.

Read Article

Mon, 13 Apr 2026

Claude's fake website distributes PlugX trojan

A fake Anthropic Claude site distributes a remote access trojan via a deceptive MSI installer. The malware runs silently while launching the legitimate app.

Read Article

Mon, 13 Apr 2026

Adobe releases emergency zero-day patch

Adobe released emergency update fixing critical vulnerability exploited in malicious PDFs.

Read Article

Mon, 13 Apr 2026

OpenAI rotates macOS certs after Axios attack hit code-signing workflow

OpenAI is rotating macOS code-signing certificates after a supply chain attack via a malicious Axios package. The company found no evidence of compromise but is acting cautiously.

Read Article