Category of intelligence

Vulnerabilities

News about security failures, exploits and vulnerabilities in systems

Stories published: 742 Showing up 9 articles per page

The manipulated update of Notepad + + revealed Chrysalis and the supply chain threat

Vulnerabilities

February 3, 2026 5 min de lectura 172

The manipulated update of Notepad + + revealed Chrysalis and the supply chain threat

It was recently confirmed what many feared: a very popular text editor among developers and advanced users was used as a vector to introduce malware into target machines. The culp…

CVE-2026-21509: APT28 takes advantage of Office with misleading documents for persistent intrusion and use of COVENANT

Vulnerabilities

February 2, 2026 5 min de lectura 149

CVE-2026-21509: APT28 takes advantage of Office with misleading documents for persistent intrusion and use of COVENANT

Just a few days after Microsoft published an emergency update, Ukrainian researchers have detected a campaign operated by hackers linked to the Russian state that takes advantage …

ClawHub on the lookout: 341 malicious modules reveal a new attack vector in the software supply chain

Vulnerabilities

February 2, 2026 6 min de lectura 153

ClawHub on the lookout: 341 malicious modules reveal a new attack vector in the software supply chain

A security audit of 2,857 "skills" published in ClawHub detected 341 malicious modules that were part of coordinated campaigns, according to the report of Koi Security. What start…

OpenClaw under attack 230 malicious skills threaten your credentials from a local assistant

Vulnerabilities

February 2, 2026 5 min de lectura 145

OpenClaw under attack 230 malicious skills threaten your credentials from a local assistant

In less than a week, researchers found that more than two hundred and thirty malicious extensions - known in OpenClaw as "skills" - were published in both the official record of t…

CVE-2026-25253: the vulnerability of OpenClaw that allows to steal tokens and take control of the gateway with a single click

Vulnerabilities

February 2, 2026 4 min de lectura 166

CVE-2026-25253: the vulnerability of OpenClaw that allows to steal tokens and take control of the gateway with a single click

A serious vulnerability has put at risk users of OpenClaw, the personal artificial intelligence assistant that runs locally and that in a few months won a very active community. T…

Unpossible promises and real fraud the HYIP boom and how to detect them

Vulnerabilities

February 2, 2026 6 min de lectura 125

Unpossible promises and real fraud the HYIP boom and how to detect them

In recent months an old enemy of savings has resurfaced: so-called high-performance investment programs or HYIP. At first sight they are presented as professional platforms, with …

Notepad + + under targeted attack: kidnapped updates and suspicions of Chinese state actors

Vulnerabilities

February 2, 2026 5 min de lectura 155

Notepad + + under targeted attack: kidnapped updates and suspicions of Chinese state actors

The Notepad + + community has received confirmation this week of an incident that many already feared: for several months the editor's update traffic was abducted and some users r…

Cybersecurity for medium-sized enterprises: integrate your defenses and reduce risk without adding complexity

Vulnerabilities

February 2, 2026 4 min de lectura 125

Cybersecurity for medium-sized enterprises: integrate your defenses and reduce risk without adding complexity

For many companies in the middle segment, cybersecurity is similar to an act of constant balance: one must protect an attack surface that grows day by day without turning the oper…

Notepad + + under supply chain attack: the manipulated update that left back doors

Vulnerabilities

February 2, 2026 5 min de lectura 124

Notepad + + under supply chain attack: the manipulated update that left back doors

A software we use daily was no longer as harmless as we thought: the Notepad + + update was manipulated to redirect downloads to malicious servers. The team behind the popular tex…

Explore RadarBytes

Vulnerabilities

The manipulated update of Notepad + + revealed Chrysalis and the supply chain threat

CVE-2026-21509: APT28 takes advantage of Office with misleading documents for persistent intrusion and use of COVENANT

ClawHub on the lookout: 341 malicious modules reveal a new attack vector in the software supply chain

OpenClaw under attack 230 malicious skills threaten your credentials from a local assistant

CVE-2026-25253: the vulnerability of OpenClaw that allows to steal tokens and take control of the gateway with a single click

Unpossible promises and real fraud the HYIP boom and how to detect them

Notepad + + under targeted attack: kidnapped updates and suspicions of Chinese state actors

Cybersecurity for medium-sized enterprises: integrate your defenses and reduce risk without adding complexity

Notepad + + under supply chain attack: the manipulated update that left back doors

Disable your ad blocker

Vulnerabilities

Manage your cookies