Application Security
The cPanel CVE-2026-41940 story continues. A new threat actor has been named, the backdoor it deploys has been documented, and the most operationally relevant fact is that this group has been operating since 2020 with detection rates close to zero. BEIJING, CHINA — A new threat actor designated Mr_Rot13 has
Ransomware
The Trigona ransomware-as-a-service (RaaS) group, linked to the Rhantus cybercrime umbrella, has begun using a privately-built exfiltration tool instead of common utilities like Rclone and MegaSync. The new “uploader_client.exe” client helps Trigona move data quickly, rotate connections to hide from network monitoring, and maintain a lower profile during
Trending
A deep-dive investigation by ESET Research reveals that prominent threat actors, including RansomHub, are expanding their toolkit of specialized malware designed to disable Endpoint Detection and Response (EDR) agents. BRATISLAVA, Slovakia — Security researchers at ESET have issued a comprehensive warning regarding the professionalization of "EDR Killers" — malicious tools
Trending
Adobe has issued an emergency out-of-band update to address a critical memory corruption vulnerability that allowed threat actors to exfiltrate data from targeted workstations for months. SAN JOSE, CA — Adobe has released emergency security updates for Acrobat and Acrobat Reader to patch a critical zero-day vulnerability, tracked as CVE-2026-34621, which