BankInfoSecurity

Breach Roundup: CISA Flags OT Risks After Polish Grid Hack

This week, a CISA warning, Nest footage in Nancy Guthrie case, Signal phishing. Spanish hacker, Russian asylum. Spanish ...
The Hacker News

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M ...

Lilly's Taltz (ixekizumab) and Zepbound (tirzepatide) used together delivered superior efficacy in first-of-its-kind Phase 3b trial for adults with psoriasis and obesity or ...

Eli Lilly and Company (NYSE: LLY) today announced positive topline results from the landmark TOGETHER-PsO open-label Phase 3b ...

Glaukos Q4 Earnings Call Highlights

Glaukos (NYSE:GKOS) reported record fourth-quarter and full-year 2025 results and reaffirmed its 2026 revenue outlook, with ...

Windows 11 Notepad flaw let files execute silently via Markdown links

Microsoft has fixed a "remote code execution" vulnerability in Windows 11 Notepad that allowed attackers to execute local or ...

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.
Infosecurity Magazine

OysterLoader Evolves With New C2 Infrastructure and Obfuscation

A multi-stage malware loader known as OysterLoader has continued to evolve into early 2026, refining its command-and-control (C2) infrastructure and obfuscation methods.