open-source — Cybersecurity News

PCAPGraph: Threat Hunting at the Speed of Triage

PCAPGraph: Threat Hunting at the Speed of Triage

PCAPGraph is an open-source network investigation and threat hunting tool that transforms packet cap...

Open-Source Network Discovery & Topology Mapping

Open-Source Network Discovery & Topology Mapping

RedSide Security has open-sourced NETMAPPER, a network discovery and visualization tool designed to ...

 RDPGraph: Turn Windows Event Logs into an Interactive RDP Attack Graph

RDPGraph: Turn Windows Event Logs into an Interactive RDP Attack Graph

When an incident unfolds and all you have left are Windows event logs, understanding attacker moveme...

Latest Posts

PoC Exploit Released for 20-Year Old PostgreSQL RCE Vulnerability

PoC Exploit Released for 20-Year Old PostgreSQL RCE Vulnerability

RedSide Security May 20, 2026 Vulnerability 89 views

A public proof-of-concept (PoC) exploit has been released for **CVE-2026-2005**, a critical remote code execution vulnerability in PostgreSQL’s **pgcrypto extension**. The flaw stems from a long-standing heap-based buffer overflow in PGP session key parsing and can allow attackers to escalate privileges to PostgreSQL superuser and execute operating system commands under certain conditions.

Continue reading: PoC Exploit Released for 20-Year Old PostgreSQL RC…
GitHub Breached - Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

GitHub Breached - Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

RedSide Security May 20, 2026 Data Leaks & Breaches 85 views

GitHub is investigating unauthorized access to its internal repositories following a supply chain attack linked to the threat actor **TeamPCP**, who reportedly listed GitHub source code and internal data for sale on a cybercrime forum. The incident is part of an ongoing malware campaign targeting open-source ecosystems, including a compromised Microsoft Python package and a self-replicating infostealer known as Mini Shai-Hulud.

Continue reading: GitHub Breached - Employee Device Hack Led to Exfi…
TeamPCP and BreachForums Launch $1,000 Contest to Drive Open-Source Supply Chain Attacks

TeamPCP and BreachForums Launch $1,000 Contest to Drive Open-Source Supply Chain Attacks

RedSide Security May 14, 2026 Cybersecurity 115 views

Cybercrime groups **TeamPCP** and **BreachForums** are reportedly running a coordinated contest offering a $1,000 Monero prize for supply chain attacks targeting open-source ecosystems. The competition incentivizes participants to compromise software packages and CI/CD pipelines using a malicious tool called “Shai-Hulud,” raising serious concerns about large-scale, crowdsourced software supply chain compromise.

Continue reading: TeamPCP and BreachForums Launch $1,000 Contest to …