Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in pages to attacker‑controlled infrastructure.

SecuPi Expands Kafka Security Leadership with Version 8: Adding Native Support for new serializers

Dotan Adler, CTO and Co-founder at SecuPi: "We are ensuring that security is never a bottleneck for innovation. Whether you are using Confluent, open-source Kafka, or managed cloud services, SecuPi ...