Expert analysis from Ricnology
Unveiling the Critical IBM API Connect Vulnerability: A Cybersecurity Wake-Up Call
DarkSpectre: A New Cyber Threat Targeting Browser Extensions Worldwide
Trust Wallet’s Chrome Extension Hack: An $8.5 Million Cybersecurity Wake-Up Call
Unveiling a Critical IBM API Connect Vulnerability: A 9.8 CVSS Threat You Can't Ignore
DarkSpectre Unveiled: The Latest Browser Extension Threat Impacting Millions
Trust Wallet Chrome Extension Breach: A Deep Dive into the $8.5 Million Shai-Hulud Supply Chain Attack
IBM API Connect vulnerability CVE-2025-13915 rated CVSS 9.8 allows remote attackers to bypass authentication mechanisms and gain unauthorized access to enterprise API management systems without credentials, requiring immediate patching
DarkSpectre malicious browser extension campaign attributed to Chinese threat actors affects 8.8 million Chrome, Edge, and Firefox users, distributing credential-stealing malware through fake productivity extensions
Trust Wallet Chrome extension compromised via Shai-Hulud supply chain attack targeting exposed GitHub credentials, enabling attackers to inject wallet-draining malware that stole $8.5 million in cryptocurrency assets from users
IBM API Connect patches critical CVSS 9.8 authentication vulnerability CVE-2025-13915, addressing remote authentication bypass allowing unauthorized access to enterprise API management systems through authentication mechanism exploitation
DarkSpectre browser extension malware campaign infects 8.8 million users across Chrome, Edge, and Firefox platforms, stealing authentication credentials and financial data through malicious extensions distributed via official browser stores
Trust Wallet Chrome extension compromised through Shai-Hulud supply chain attack targeting developer GitHub secrets, resulting in $8.5 million cryptocurrency theft via malicious extension update affecting digital asset wallet users