Malicious Packages with Hidden Code Discovered in the NPM Repository

🔍 Cybercriminals are increasingly using sophisticated techniques to inject malicious code into the NPM repository. Although the number of malicious packages seemed to decline in 2023–2024, this trend has not continued in 2024. Recently, security researchers identified two NPM packages…

New Dangerous Vulnerability Discovered in Windows MMC

A new security vulnerability, CVE-2025-26633, has been discovered in the Microsoft Management Console (MMC), which is being actively exploited by the Russian hacker group Water Gamayun (also known as EncryptHub and Larva-208). This vulnerability allows attackers to bypass Windows security…