
Miasma Supply Chain Malware Jumps to Go and GitHub Actions
Miasma malware expands from npm to Go and GitHub Actions. CVE-2026-12569 Windchill RCE hits KEV. CL-STA-1062 espionage targets SE Asia governments.
Posts tagged: Apt

Miasma malware expands from npm to Go and GitHub Actions. CVE-2026-12569 Windchill RCE hits KEV. CL-STA-1062 espionage targets SE Asia governments.

FBI flash alert on Silent Ransom Group USB attacks at law firms. LA Metro attributed to Iranian APT. SymJack weaponizes AI coding agents. CVE-2026-45659.

UAT-8302 APT targets governments with NetDraft and VSHELL, Cisco acquires Astrix Security for non-human identity, DigiCert revokes certs after breach.

Technical analysis of UEFI/firmware rootkits: LoJax, MoonBounce, CosmicStrand, and BlackLotus. Detection with chipsec, TPM attestation, and Secure Boot …

How watering hole attacks work: victim profiling, iframe injection, drive-by exploits. Real incidents, JavaScript fingerprinting, CSP headers, and browser …

Deep dive into the SUNBURST backdoor: Orion build pipeline injection, DGA-based C2, lateral movement, detection with Splunk SPL, and supply chain defense …