📰 Dev.to · Mark0

Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS

Claude Code leak used to push infostealer malware on GitHub

Weaponizing Trust Signals: Claude Code Lures and GitHub Release Payloads

The Good, the Bad and the Ugly in Cybersecurity – Week 14

Possible US Government iPhone Hacking Tool Leaked

vSphere and BRICKSTORM Malware: A Defender's Guide

Overview of Content Published in March

Prioritizing Alerts Triage with Higher-Order Detection Rules

Red Canary CFP tracker: April 2026

The Implementation Blind Spot | Why Organizations Are Confusing Temporary Friction with Permanent Safety

A laughing RAT: CrystalX combines spyware, stealer, and prankware features

Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse

Threat Brief: Widespread Impact of the Axios Supply Chain Attack

Hooked on Linux: Rootkit Detection Engineering

Operation TrueChaos: 0-Day Exploitation Against Southeast Asian Government Targets

How SentinelOne’s AI EDR Autonomously Discovered and Stopped Anthropic’s Claude from Executing a Zero Day Supply Chain Attack, Globally

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain Attack

Fake Installers to Monero: A Multi-Tool Mining Operation

Elastic releases detections for the Axios supply chain compromise

Inside the Axios supply chain compromise - one RAT to rule them all

Double Agents: Exposing Security Blind Spots in GCP Vertex AI

Weaponizing the Protectors: TeamPCP’s Multi-Stage Supply Chain Attack on Security Infrastructure

AI Threat Landscape Digest January-February 2026