Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...
Arabian Post

BlankGrabber cloaks theft with fake certificate

A newly documented BlankGrabber infection chain is using a bogus “certificate” loader to disguise a multi-stage Windows compromise, adding another layer of deception to a commodity stealer already ...
Bitdefender

War in the Middle East Triggers Surge in Phishing and Malware Campaigns Targeting Gulf Countries

Bitdefender finds a sharp rise in phishing and malware emails targeting Gulf countries after February 28 escalation.