Cybersecurity News, Analysis & Insights — Threat Digest

Nation-State Threats ⚠️ Warning

FBI Wipes Russian Spy Routers Clean as Iran Hammers U.S. Factory Controls

Midnight commands from the FBI just purged thousands of TP-Link routers of Russian spyware. But Iran's hitting U.S. factories hard—welcome to cybersecurity's brutal week 15.

5 min read 1 month, 1 week ago

Vulnerabilities & CVEs ⚠️ Warning

Edge Decay: Attackers Are Breaching Your 'Secure' Firewall First

Imagine logging into work tomorrow, only to hand your credentials to hackers via a compromised firewall. Edge decay turns your perimeter from shield to sieve, fueling stealthy intrusions that hit real businesses hard.

4 min read 1 month, 1 week ago

Ransomware & Malware ⚠️ Warning

CrystalX RAT: The Malware That Trolls You While Pilfering Your Secrets

Imagine malware that not only steals your passwords but rickrolls your screen mid-heist. CrystalX RAT does just that, fusing cybercrime with cruel jokes in one Go-powered package.

4 min read 1 month, 1 week ago

Vulnerabilities & CVEs ⚠️ Warning

Metasploit's March 2026 Punch: FreePBX and AVideo Ripe for Ransack

Metasploit just armed hackers with easy command injection hits on FreePBX and AVideo Encoder. Think your PBX is secure? Think again.

4 min read 1 month, 1 week ago

Ransomware & Malware ⚠️ Warning

Horabot's 'Sapecar' Strikes Mexico: Old Tricks, New CAPTCHA Lies

Fake CAPTCHA? Click anyway? That's how Horabot's 'Sapecar' sneaks into Mexican banks. Kaspersky stopped it cold—but it's a reminder: vigilance isn't optional.

4 min read 1 month, 1 week ago

Security Tools 📊 Objective

Vector Command Turns Web Apps into Breach Blueprints

Web apps aren't just code—they're your front door to disaster. Vector Command proves it by chaining exploits real hackers love.

5 min read 1 month, 1 week ago

Ransomware & Malware ⚠️ Warning

ClipBanker's Marathon Infection: From Proxifier Search to Crypto Heist

Imagine searching for Proxifier software, clicking a top GitHub result, and unwittingly launching a cyber relay race straight to your crypto wallet. ClipBanker doesn't rush—it endures, layer by layer, until it owns your clipboard.

5 min read 1 month, 1 week ago

Vulnerabilities & CVEs ⚠️ Warning

Rapid7 Cracks Open Cellular IoT: No Tamper Protections on Any Tested Device

Zero cellular IoT devices in Rapid7's tests had tamper protections. That's right—none. Attackers with a screwdriver can pivot straight to your cloud.

4 min read 1 month, 1 week ago

Security Tools 📊 Objective

Rapid7's 2026 Summit: Preemptive Security or Just More Buzz?

Security teams are exhausted from chasing shadows. Rapid7's 2026 summit agenda lays out a blueprint for striking first, with real-world voices cutting through the noise.

5 min read 1 month, 1 week ago

Ransomware & Malware ⚠️ Warning

GoPix: Brazil's Sneaky Banking Trojan That Hides in Plain RAM

Brazil's cybercriminals just upped their game with GoPix, a banking Trojan that squats in your RAM like an uninvited guest. Forget disk traces—it's pure stealth, targeting Pix and crypto with MITM tricks.

4 min read 1 month, 1 week ago

Vulnerabilities & CVEs ⚠️ Warning

Q4 2025: Vulnerabilities Explode, Exploits Feast

Q4 2025 was a vulnerability bloodbath. Attackers feasted on decade-old bugs while new ones piled up.

4 min read 1 month, 1 week ago

Cloud Security ⚠️ Warning

LiteLLM's Poisoned Update: Hackers Hijack AI Gateway to Raid Cloud Secrets

A routine pip install turned nightmare for LiteLLM users last March. Attackers slipped malware into this AI gateway, exfiltrating cloud creds and server configs in a classic supply chain hit.

5 min read 1 month, 1 week ago