Go is a mitre_attack tracked across 19 threat clusters and 23 intelligence report mentions on ThreatCluster. First observed November 7, 2025; most recent activity July 6, 2026.
Dell has released two security updates (DSA-2025-434 and DSA-2025-435) addressing multiple vulnerabilities in PowerFlex Rack and Appliance systems. The updates cover numerous CVEs, including critical vulnerabilities in…
Gogs, a self-hosted Git service, has a vulnerability allowing path traversal in organization names. This flaw permits attackers to create nested Git repositories, leading to the potential for Remote Code Execution (RCE)…
On December 3, 2025, Meta disclosed CVE-2025-55182, a critical remote code execution vulnerability dubbed React2Shell, affecting React Server Components. The flaw arises from improper type validation in the Flight…
The Gentlemen ransomware, a Go-based RaaS, has been active since mid-2025 and employs aggressive propagation methods. It utilizes 21 remote execution techniques, including PsExec, WMIC, and PowerShell Remoting, to…
A new supply chain attack, dubbed 'Mini Shai-Hulud', has compromised multiple npm packages related to SAP's Cloud Application Programming Model (CAP). This attack involves injecting malicious preinstall scripts into…
Dutch police, in collaboration with the National Cyber Security Centre (NCSC), have dismantled a massive botnet comprising over 17 million infected devices. The operation involved seizing more than 200 servers located…
A malicious Go module named github.com/shopsprint/decimal has been discovered, impersonating the legitimate github.com/shopspring/decimal library. This typosquatting attack has been active since 2017 and was weaponized…
Two vulnerabilities have been reported related to the Go programming language's command line tool. CVE-2023-29402, published on June 8, 2023, involves code injection via the 'go' command with cgo, while CVE-2020-28367,…
OpenAI has introduced GPT-5.4-Cyber, a specialized AI model for defensive cybersecurity, available only to vetted professionals through its Trusted Access for Cyber (TAC) program. This model is designed to facilitate…
GoFlateLoader, a Golang-based malware loader, is being used to deliver various infostealers, including Lumma, Vidar, StealC, Amatera, and Remus. Its design is simple, employing a manual PE loader without advanced…