Q2 2026 Cyber Attacks Statistics

Q2 2026 brought 578 recorded cyber incidents worldwide, with financially-motivated cyber crime accounting for over 71% of the total. Malware remained the attacker’s weapon of choice, exploiting public-facing applications as the leading entry point. Information & Communication stood out as…

Cyber Briefing: 2026.07.14

Jscrambler npm compromise, critical SAP memory bugs, and a paralyzing malware attack on Japan’s leading taxi firm This article has been indexed from CyberMaterial Read the original article: Cyber Briefing: 2026.07.14

Miasma Worm Returns as RAT-First npm Attack With Automatic Propagation Disabled

Four AsyncAPI packages previously affected by the Shai-Hulud: The Second Coming campaign have been compromised again, with new malicious releases delivering a RAT-focused build of the Miasma worm. The impacted versions are @asyncapi/generator 3.3.13.3.13.3.1, @asyncapi/generator-components 0.7.10.7.10.7.1, @asyncapi/generator-helpers 1.1.11.1.11.1.1, and @asyncapi/specs…

Attackers Distribute Password Attacks Across Fictional OAuth Apps to Evade SOC Alerts

Attackers are increasingly abusing spoofed OAuth application identifiers to enumerate Microsoft Entra ID accounts, test credentials, and fragment authentication activity across hundreds of thousands or millions of fictional applications. The technique exploits how Entra ID processes the client_id parameter in…

Malicious Jscrambler NPM Packages Released

A recent supply chain attack targeting Jscrambler resulted in the publication of several malicious versions of its popular NPM package over the weekend. This article has been indexed from CyberMaterial Read the original article: Malicious Jscrambler NPM Packages Released