New threat actor, UAT-9921, leverages VoidLink framework in campaigns
https://blog.talosintelligence.com/voidlink/
CVE-2026-20841 - Security Update Guide - Microsoft - Windows Notepad App Remote Code Execution Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20841
LummaStealer infections surge after CastleLoader malware campaigns
https://www.bleepingcomputer.com/news/security/lummastealer-infections-surge-after-castleloader-malware-campaigns/
Police arrest seller of JokerOTP MFA passcode capturing tool
https://www.bleepingcomputer.com/news/security/police-arrest-seller-of-jokerotp-mfa-passcode-capturing-tool/
New Linux botnet SSHStalker uses old-school IRC for C2 comms
https://www.bleepingcomputer.com/news/security/new-linux-botnet-sshstalker-uses-old-school-irc-for-c2-comms/
We hid backdoors in binaries — Opus 4.6 found 49% of them - Quesma Blog
https://quesma.com/blog/introducing-binaryaudit/
WSL in the Malware Ecosystem - SANS Internet Storm Center
https://isc.sans.edu/diary/32704
Crazy ransomware gang abuses employee monitoring tool in attacks
https://www.bleepingcomputer.com/news/security/crazy-ransomware-gang-abuses-employee-monitoring-tool-in-attacks/
Microsoft releases Windows 11 26H1 for select and upcoming CPUs
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-11-26h1-for-select-and-upcoming-cpus/
Malicious 7-Zip site distributes installer laced with proxy tool
https://www.bleepingcomputer.com/news/security/malicious-7-zip-site-distributes-installer-laced-with-proxy-tool/
GitHub - joaoviictorti/rustbof: A Rust template for writing Beacon Object Files (BOFs)
https://github.com/joaoviictorti/rustbof
GitHub - CaptMag/MalDev: Creation of multiple Malware tools consisting of evasion, enumeration and exploitation
https://github.com/CaptMag/MalDev