Nimbus Manticore Uses Fake Installers to Drop MiniFast Backdoor
Check Point says Nimbus Manticore used SEO poisoning, fake software lures, and installer abuse to deploy the new MiniFast backdoor during regional conflict activity.
News desk
Security News
Security incidents, exploited vulnerabilities, breach reports, malware campaigns, and urgent patch notes arranged for fast daily scanning.
June 24, 2026
Latest reports
Drupal Core CVE-2026-9082: PostgreSQL SQL Injection Patch
Drupal core CVE-2026-9082 is a highly critical PostgreSQL SQL injection flaw. Check affected branches, fixed versions, production database driver, logs, and post-patch review steps.
SonicWall CVE-2024-12802: MFA Bypass Still Exposes SSL-VPNs
SonicWall CVE-2024-12802 can leave SSL-VPN MFA bypassable when firmware is patched but LDAP/AD settings are not completed. Check UPN/SAM login paths and VPN authentication…
ChromaDB CVE-2026-45829 Allows Pre-Auth Server Takeover
HiddenLayer disclosed ChromaToast, a pre-auth RCE in ChromaDB Python FastAPI server deployments that can execute a malicious model before access checks run.
GitHub Internal Repos Exposed Through Poisoned VS Code Extension
GitHub says an employee device was compromised through a poisoned VS Code extension, exposing internal repositories and putting developer workstation trust under scrutiny.
Storm-2949 SSPR Abuse: From MFA Prompt to Cloud-Wide Breach
Microsoft says Storm-2949 abused Self-Service Password Reset and MFA social engineering to reach Microsoft 365 and Azure data. Check SSPR scope, MFA changes, Graph…
Fox Tempest Signed Malware Service: Why Valid Signatures Are Not Enough
Microsoft says Fox Tempest operated a malware-signing service. Learn why signed malware can still be unsafe, what users should check, and how defenders should…
Shai-Hulud AntV npm Supply-Chain Wave: What Developers Should Check
Shai-Hulud returned in an AntV npm supply-chain wave affecting hundreds of packages. Check AntV dependencies, install scripts, GitHub tokens, persistence, and CI runners.
Microsoft Defender Detection Names: What They Mean and What to Do
A practical guide to Microsoft Defender detection names and Protection History statuses, including Remediation incomplete, Quarantine failed, Threat abandoned, false positives, and safe follow-up…