cognitive cybersecurity intelligence

News and Analysis

Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation

An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more zero-days involving a BitLocker bypass and a privilege escalation impacting Windows Collaborative Translation Framework (CTFMON).
The security defects have been codenamed YellowKey and GreenPlasma, respectively, by the researcher, who goes by the online aliases Chaotic Eclipse

Source: thehackernews.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

Disclosing new PebbleDash-based tools by Kimsuky – Securelist

Disclosing new PebbleDash-based tools by Kimsuky Securelist

170 npm Packages Hijacked to Steal GitHub, AWS & Kubernetes Secrets

Hackers have launched a large-scale supply chain attack by compromising more than 170 npm packages and two PyPI libraries, collectively downloaded over 200 million times

Langflow CVE-2026-33017 Exploited to Steal AWS Keys and Deploy NATS Worker

Attackers are now abusing a fresh Langflow vulnerability to quietly steal cloud keys and turn victim systems into workers for a new NATS based botnet.

ReliaQuest spots ClickFix attack using PySoxy proxy – SecurityBrief UK

ReliaQuest spots ClickFix attack using PySoxy proxy SecurityBrief UK

News and Analysis

Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation

Subscribe to newsletter

More Posts

Disclosing new PebbleDash-based tools by Kimsuky – Securelist

170 npm Packages Hijacked to Steal GitHub, AWS & Kubernetes Secrets

Langflow CVE-2026-33017 Exploited to Steal AWS Keys and Deploy NATS Worker

ReliaQuest spots ClickFix attack using PySoxy proxy – SecurityBrief UK

Products

Solutions

Healthcare cybersecurity

Healthcare Threat Intelligence

Use Cases

News and Analysis

Insights

Company