New Supply Chain Campaign Compromises AI, DevOps, and Open-Source Packages Across npm and PyPI A new large-scale software supply chain campaign linked to the TeamPCP threat actor and the Mini Shai-Hulud malware family has compromised dozens of packages across the npm…
Attack #9: Privilege Escalation & Lateral Movement
Attack #9: Privilege Escalation & Lateral Movement How attackers expand access inside the environment Threat snapshot – Privilege Escalation & Lateral Movement Category Summary What it is Techniques used by attackers to gain higher privileges and move across systems after initial…
Fake Claude AI Ads Used to Deliver macOS Infostealer Malware
Fake Claude AI Ads Used to Deliver macOS Infostealer Malware Overview A new malvertising campaign is targeting macOS users through fake Google Search advertisements and deceptive AI download portals impersonating popular tools such as Claude AI. According to publicly shared threat…
ThreatScope by DIAMATIX: Critical Vulnerabilities and Security Infrastructure Risks (May 5–12, 2026)
ThreatScope Critical Vulnerabilities and Security Infrastructure Risks (May 5–12, 2026) 🎧 Listen to this week’s ThreatScope (audio brief) The latest ThreatScope analysis highlights continued pressure on enterprise security infrastructure, identity systems, browser environments, and management platforms. During the period May 5…
DIAMATIX to Participate in Business Run Varna 2026
DIAMATIX to Participate in Business Run Varna 2026 This Saturday, May 16, 2026, the DIAMATIX team will take part in Business Run Varna, with the start scheduled for 9:00 AM in Varna. Business Run is the largest corporate team-building running event…
Why Clients Buy Response, Not Monitoring
MSP Insights Why Clients Buy Response, Not Monitoring TL;DR Most organizations already understand the value of monitoring and visibility. What they increasingly evaluate is how security response actually works during real incidents. Clients look beyond dashboards and alerts. They assess how…
Massive DDoS Campaign Demonstrates How Distributed Attacks Evade Traditional Rate Limits
Massive DDoS Campaign Demonstrates How Distributed Attacks Evade Traditional Rate Limits A new large-scale Distributed Denial-of-Service (DDoS) campaign demonstrates how modern botnet operations are evolving beyond traditional volumetric attack models. According to DataDome, attackers generated more than 2.45 billion malicious requests…
DIAMATIX to Participate in the 36th General Assembly of the National Association of Municipal Secretaries in the Republic of Bulgaria
DIAMATIX to Participate in the 36th General Assembly of the National Association of Municipal Secretaries in the Republic of Bulgaria On May 14–15, 2026, National Association of Municipal Secretaries in the Republic of Bulgaria will hold its 36th General Assembly at…
World Password Day: Why Strong Passwords Are Not Enough
World Password Day: Why Strong Passwords Are Not Enough Passwords are still the first line of defense. But most modern attacks do not try to “break” them. They simply use them. For years, organizations focused heavily on password complexity policies. Minimum…
Critical Apache HTTP Server Vulnerability Requires Immediate Action
Critical Apache HTTP Server Vulnerability Requires Immediate Action The Apache Software Foundation has released a security update addressing five vulnerabilities in Apache HTTP Server, including a high-impact issue that may lead to remote code execution (RCE). The most significant flaw, CVE-2026-23918…