New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks 
Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit 
NSAuditor AI EE 0.15.6 Closes Two Cross-Framework Audit-Routing Defects on S3 Public-Exposure — NIST CSF and PCI DSS Now Catch a Public Bucket; A Missing Guardrail No Longer Reads as a Confirmed Breach 
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware 
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal 
New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
What's new: A new Russian-linked threat actor named GREYVIBE has been identified, targeting Ukraine and related entities since at least...
Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
What's new: Attackers have exploited the Marimo network vulnerability CVE-2026-39987 to gain initial access and subsequently used a large language...
NSAuditor AI EE 0.15.6 Closes Two Cross-Framework Audit-Routing Defects on S3 Public-Exposure — NIST CSF and PCI DSS Now Catch a Public Bucket; A Missing Guardrail No Longer Reads as a Confirmed Breach
Nsasoft US LLC has shipped NSAuditor AI EE 0.15.6, the forty-fourth consecutive trio-publish of its local-first, zero-data-exfiltration enterprise security scanner....
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
What's new: A new threat actor, tracked as JINX-0164, is targeting cryptocurrency firms using recruitment-themed social engineering tactics and custom...
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
What's new: Microsoft has criticized the public disclosure of multiple zero-day vulnerabilities affecting Windows components, including Defender and BitLocker, by...