Subscribe to Gurucul’s news feed.
Click on “Follow” and decide if you want to get news from Gurucul via RSS, as email newsletter, via mobile or on your personal news page.
Subscription to Gurucul comes without risk as you can unsubscribe instantly at any time.
You can also filter the feed to your needs via topics and keywords so that you only receive the news from Gurucul which you are really interested in. Click on the blue “Filter” button below to get started.
Website title: Gurucul | AI SOC Platform and Next-Gen SIEM
Is this your feed? Claim it!
Our analysis identified three malicious versions (1.4.1, 1.4.2, and 1.4.3) of Microsoft’s DurableTask Python package published on PyPI. The compromised packages contained malicious code embedded within multiple __init__.py files, enabling automatic execution whenever the package was imported. By leveraging a trusted open-source package, the attackers g...
On May 16, 2026, the Qilin ransomware group claimed responsibility for a cyberattack against CLINICA AVELLANEDA MEDICAL CENTER in Argentina. According to information published on the group’s leak site, attackers allegedly exfiltrated sensitive patient information, including personally identifiable information (PII) and medical imaging reports. While the auth...
A large-scale software supply chain campaign dubbed Megalodon leveraged malicious GitHub Actions workflow modifications to steal sensitive credentials from affected repositories. Analysis revealed credential harvesting capabilities targeting GitHub tokens, cloud credentials, API keys, database secrets, and private keys.
T...
This research analyzes a ClickFix-based malware campaign distributing the .NET-based PureLogs stealer through the spoofed licensing-themed website canndelta[.]com. Victims are socially engineered into executing malicious PowerShell commands, initiating a multi-stage infection chain involving staged PowerShell loaders, Donut shellcode, and in-memory .NET asse...
A suspected compromise involving a malicious VS Code extension has led to unauthorized access to GitHub internal repositories, with threat actor TeamPCP claiming to possess nearly 4,000 repositories allegedly stolen from the platform.
The threat actor advertised...