ThreatsDay Bulletin: active exploits, supply chain attacks, AI abuse, and stealth data risks observed this week.

The notorious botnet known as Aisuru has launched an unprecedented distributed denial-of-service (DDoS) attack, reaching a staggering 29.7 Tbps. Internet infrastructure provider Cloudflare reported ...

Over 1,000 exposed ComfyUI instances exploited via unauthenticated code execution, enabling Monero mining and botnet expansion.

Andrej Karpathy, the former Tesla AI director and OpenAI cofounder, is calling a recent Python package attack "software horror"—and the details are genuinely alarming. A compromised version of LiteLLM ...

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...

The Middle East and North Africa (Mena) region experienced a 236 per cent surge in DDoS attacks during the second quarter of 2025 amid escalating regional conflicts, data showed on Wednesday. This is ...

Jamf Threat Labs has discovered a ClickFix-style macOS attack that abuses the applescript:// URL scheme to launch Script Editor and deliver an Atomic Stealer infostealer payload — bypassing Terminal ...

Servers are back online for now, but raiders need to be vigilant. It’s been a rough return to Topside. Just a day after ARC Raiders rolled out its major Headwinds update, Embark Studios found itself ...

A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal. Script Editor ...

The Tribune, now published from Chandigarh, started publication on February 2, 1881, in Lahore (now in Pakistan). It was started by Sardar Dyal Singh Majithia, a public-spirited philanthropist, and is ...