GitLab Product Security Update Advisory (CVE-2026-2370)
overview We have released security updates to address vulnerabilities in GitLab products. users of affected products are encouraged to update to the latest version. affected products CVE-2026-2370 GitLab CE/EE Versions: 14.3 and above but below 18.8.7GitLab CE/EE Versions: 18.9 and later but not earlier than 18.9.3GitLab CE/EE version: 18.10 or
April 01, 2026
April 01, 2026 Hash 1e0ddeb67a94bc2e1a4829c125a5265fa 2b025fc799d812bd24671f25442d59f52 32bae03ff250ae5532953059085ed8823 URL 1http[:]//83[.]168[.]69[.]118/run[.]sh 2https[:]//shopquyendzff[.]com/ 3http[:]//juancarloscubeiro[.]com/ IP 1191[.]6[.]25[.]239 2103[.]172[.]236[.]15 314[.]103[.]127[.]66...
Beware of Apps with Excessive Advertising Distributed via Mobile App Stores
AhnLab’s engine development team found a number of apps on the Google Play Store and Apple App Store that disguised themselves as dealing with topics close to our daily lives, such as government policies and learning apps, and displayed excessive ads. Figure 1. Hyped apps circulating on Google Play
IBM Product Security Update Advisory (CVE-2025-13855)
overview We have released security updates that address vulnerabilities in IBM products. users of affected products are encouraged to update to the latest version. affected products CVE-2025-13855 IBM Storage Protect Server Version: 8.2.0 resolved Vulnerabilities SQL injection vulnerability in IBM Storage Protect Server (CVE-2025-13855) vulnerability patches Vulnerability patches have been
Malicious LNK Files Distributing a Python-Based Backdoor and Changes in Distribution Techniques (Kimsuky Group)
Overview AhnLab SEcurity intelligence Center (ASEC) recently identified a change in the Kimsuky group’s method of distributing malicious LNK files. The overall attack flow remains the same as before, with a malicious LNK ultimately executing a Python-based backdoor or downloader. However, a structural change was observed in the intermediate execution
