Breaking News – Cyber Threats (last 6h)
Generated: 2026-07-17 13:00 PDT
- Seven Malicious Vite npm Packages Use Blockchain C2 to Deliver a RAT
The Hacker News • 2026-07-17 11:54 • thehackernews.com
Cybersecurity researchers have discovered a cluster of seven malicious npm packages targeting the Vite frontend tooling ecosystem as part of a software supply chain attack.The malicious package campaign, codenamed ViteVenom by Checkmarx, marks an expansion of ChainVeil, which was observed using an “unprecedented” four-tier blockchain-based command-and-control (C2) infrastructure spanning Tron,
https://thehackernews.com/2026/07/seven-malicious-vite-npm-packages-use.html - HollowByte DDoS flaw bloats OpenSSL server memory with 11-byte payload
BleepingComputer • 2026-07-17 10:56 • www.bleepingcomputer.com
A vulnerability dubbed HollowByte allows unauthenticated attackers to trigger a denial-of-service (DoS) condition on OpenSSL servers with a malicious payload of just 11 bytes. […]
https://www.bleepingcomputer.com/news/security/hollowbyte-ddos-flaw-bloats-openssl-server-memory-with-11-byte-payload/ - New NadMesh Botnet Hunts Exposed AI Services for Cloud Keys and Kubernetes Tokens
The Hacker News • 2026-07-17 10:12 • thehackernews.com
A Go botnet called NadMesh turned up in early July hunting exposed AI services, and the operator’s own dashboard claims 3,811 unique AWS keys.A Shodan harvester keeps the scan queue stocked with ComfyUI, Ollama, n8n, Open WebUI, Langflow, and Gradio: the image generators, local model runners, and workflow builders that teams stand up fast and firewall late.
The intel feed behind that counter
https://thehackernews.com/2026/07/new-nadmesh-botnet-hunts-exposed-ai.html - GoldenEyeDog Subgroup Linked to DigiCert Breach and Code-Signing Certificate Theft
The Hacker News • 2026-07-17 09:39 • thehackernews.com
Cybersecurity researchers have attributed the April 2026 DigiCert security incident to a threat activity cluster dubbed CylindricalCanine.Expel, which shared technical details of the event, described the threat actor as a sub-group of GoldenEyeDog (aka APT-Q-27, Dragon Breath, and Miuuti Group), a Chinese cybercrime group known for its targeting of the gambling and gaming sectors using
https://thehackernews.com/2026/07/goldeneyedog-subgroup-linked-to.html - Ernst & Young discloses data breach after support system hack
BleepingComputer • 2026-07-17 07:55 • www.bleepingcomputer.com
Ernst & Young is notifying customers of a data breach caused by the compromise of a third-party support ticket system used by its IT personnel. […]
https://www.bleepingcomputer.com/news/security/ernst-and-young-discloses-data-breach-after-support-system-hack/ - Inside the Search for "Clean" Residential Proxies for Carding
BleepingComputer • 2026-07-17 07:00 • www.bleepingcomputer.com
Residential proxies are no longer the silver bullet they once were for carding. Flare explains why cybercriminals increasingly seek “clean” residential proxies and combine them with browser fingerprints, device profiles, and other identity signals to evade modern fraud detection. […]
https://www.bleepingcomputer.com/news/security/inside-the-search-for-clean-residential-proxies-for-carding/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
