Security Boulevard

Shai-Hulud: The Second Coming

While the September 2025 Shai-Hulud attack focused primarily on credential harvesting and self-propagation, this new variant ...
Pen Test Partners

Beyond cloud compliance dashboards, what’s next?

TL;DR Introduction Cloud compliance frameworks are a good place to start. Dashboards that show how your estate compares to ...
Dark Reading

Infamous Shai-hulud Worm Resurfaces From the Depths

New variant executes malicious code during preinstall, significantly increasing potential exposure in build and runtime ...
The Hacker News

ToddyCat's New Hacking Tools Steal Outlook Emails and Microsoft 365 Access Tokens

ToddyCat upgrades tools like TCSectorCopy and TomBerBil to steal corporate email and browser data, targeting Outlook and ...
CSO Online

ToddyCat APT evolves to target Outlook archives and Microsoft 365 tokens

The new ToddyCat tooling shifts the group’s focus from browser theft to extracting Outlook mail archives and Microsoft 365 ...

80,000 code snippets From banks, governments, and technology company leaked: Cloud passwords, payment keys, personal data exposed

Thousands of sensitive credentials, including bank passwords and government security keys, were exposed online via ...