Security news.
Today's cybersecurity landscape highlights a surge in sophisticated phishing and info-stealing campaigns, with threat actors leveraging novel techniques like abusing AI app builders and Solana dead drops. Critical vulnerabilities in NetScaler and a new CISA KEV addition underscore the ongoing need for diligent patching and robust security measures. Law enforcement also made significant strides against cybercrime, including the arrest of a major stolen credential marketplace administrator.
Bubble AI app builder abused to steal Microsoft account credentials
Threat actors are using the no-code app-building platform Bubble to host malicious web apps, bypassing phishing detection to steal Microsoft account credentials.
Citrix urges admins to patch NetScaler flaws as soon as possible
Citrix has released patches for two NetScaler ADC and NetScaler Gateway vulnerabilities, one of which is similar to previously exploited zero-day flaws.
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added CVE-2026-33017, a Langflow Code Injection Vulnerability, to its KEV Catalog due to evidence of active exploitation.
Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse
An active device code phishing campaign is targeting Microsoft 365 identities in over 340 organizations across the U.S., Canada, Australia, New Zealand, and Germany by leveraging OAuth abuse.
New Torg Grabber infostealer malware targets 728 crypto wallets
A new info-stealing malware, Torg Grabber, is designed to steal sensitive data from 850 browser extensions, including over 700 cryptocurrency wallets.
GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data
The GlassWorm campaign has evolved to use Solana dead drops to deliver a multi-stage framework for comprehensive data theft and remote access trojan deployment.
LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace
Russian law enforcement has arrested the alleged administrator of the LeakBase cybercrime forum, which facilitated the trade of stolen credentials.
iOS, macOS 26.4 Roll Out With Fresh Security Patches
Apple has released security updates for iOS, macOS, and older devices, addressing various vulnerabilities.