Malicious VS Code Extensions Turn Developer Tools Into Data Spies, Exposing Code From 1.5 Million Machines Cyber Threat Intelligence AegironJanuary 31, 2026January 31, 20269 mins0 VS Code Marketplace Malicious Extensions Incident Timeframe: January 28–31Category: Supply-chain compromise / malicious IDE extensionsImpact: Source-code theft,…continue reading..
Trusted Antivirus Turned Weapon: eScan Update Server Breach Pushes Malware to Users Worldwide Cyber Threat Intelligence AegironJanuary 31, 2026January 31, 20269 mins0 eScan Antivirus Update Server Compromise Incident Type: Supply-chain compromise / trusted software abuseSeverity: CriticalScope: Consumer and enterprise…continue reading..
Continental Controls Discloses Malware Breach After IT Systems Disrupted CyberSecurity News AegironJanuary 31, 2026January 31, 202611 mins0 Malware Incident – Continental Controls Limited Affected Organization: Continental Controls LimitedIncident Type: Malware-based intrusion with internal propagation…continue reading..
AI-Powered Espionage: RedKitten Targeted NGOs and Activists During Iran Protest Crackdown Cyber Threat Intelligence AegironJanuary 31, 2026January 31, 202612 mins0 RedKitten Campaign – Detailed Incident Analysis Date observed: January 2026Threat actor: RedKitten (Farsi-speaking, politically motivated)Primary region of…continue reading..
CVE-2026-24888: Maker.js Prototype Pollution Flaw Exposes Developer Toolchains to Silent Logic Manipulation Vulnerabilities AegironJanuary 31, 2026January 31, 20268 mins0 CVE-2026-24888 — Maker.js Prototype Pollution Vulnerability Vulnerability Overview CVE ID: CVE-2026-24888Affected Component: Maker.jsAffected Function: makerjs.extendObjectVulnerability Class: Prototype…continue reading..
CVE-2026-24889: Silent Arithmetic Overflow in soroban-sdk Puts Smart Contract Integrity at Risk Vulnerabilities AegironJanuary 31, 2026January 31, 202613 mins0 CVE-2026-24889 — soroban-sdk Arithmetic Overflow / Range Handling Bug CVE: CVE-2026-24889Product: rs-soroban-sdk (Rust SDK for Soroban smart…continue reading..
Critical OneFlow Flaws Expose AI Workloads to Easy Denial-of-Service Attacks Vulnerabilities AegironJanuary 31, 2026January 31, 202610 mins0 Product Details OneFlow is an open-source deep learning framework used for building, training, and serving AI/ML models…continue reading..
CVE-2026-25130: Critical CAI Argument Injection Bug Opens Door to Remote Code Execution — Patch Urgently Required Vulnerabilities AegironJanuary 31, 2026January 31, 20269 mins0 CVE-2026-25130 — Argument Injection Leading to Remote Code Execution Vulnerability Summary Official Patch / Upgrade The vulnerability…continue reading..
CVE-2026-24780: AutoGPT Platform Flaw Allows Authenticated Users to Execute Arbitrary Code Vulnerabilities AegironJanuary 31, 2026January 31, 20269 mins0 CVE-2026-24780 – AutoGPT Platform Vulnerability Overview CVE ID: CVE-2026-24780Affected Product: AutoGPT PlatformVulnerability Type: Remote Code Execution (RCE)Severity:…continue reading..
Critical Privilege Escalation Flaws Discovered in IBM Db2: Enterprises Urged to Patch Immediately Vulnerabilities AegironJanuary 31, 2026January 31, 202610 mins0 IBM Db2 Security Vulnerability Assessment Product: IBM Db2 Database ServerPlatforms Affected: Linux, UNIX, WindowsAudience: Security teams, SOC,…continue reading..
