Featured Story

TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies

Cybersecurity researchers have discovered a cybercrime campaign using malvertising to deliver a new information stealer called TamperedChef. Victims are lured into downloading a trojanized PDF editor, AppSuite PDF Editor, that harvests credentials and web cookies. The malware establishes persistence via Windows Registry changes and activates malicious features on command. It terminates web browsers and scans for security products once activated.

Other Stories

Over 28,000 Citrix Devices Vulnerable to New Exploited RCE Flaw

Citrix has issued patches for three flaws in NetScaler ADC and Gateway, including CVE-2025-7775 (CVSS 9.2), a critical memory overflow bug. Over 28,000 systems remain vulnerable. Exploits in the wild are already targeting unpatched appliances, highlighting ongoing risks to exposed infrastructure.

Malicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI Credentials

A supply chain attack on the popular Nx npm package led to malicious versions being published, stealing credentials by abusing GitHub permissions. The compromised packages ran scripts that harvested credentials and exploited AI CLI tools to extract local files. The breach began via a vulnerable workflow allowing code injection through pull request titles.

Beware of Fake Emails That Appear to Come from Bitvavo

Belgium’s cybersecurity authorities warn of a phishing campaign impersonating Bitvavo, a Dutch crypto platform. The scam ranks among the top 5 most common phishing messages in Belgium, using urgent messaging and threats to trick users into handing over credentials.