Building a faster YARA engine in pure Go
YARA is the industry standard for pattern matching in malware detection. Maintained by VirusTotal, it powers threat detection at nearly every security vendor. At Sansec, we rely on YARA for eComsca…
Latest Security Updates
View All →CVE-2026-25523 (MEDIUM) CVSS 5.3
🟡 Severity: MEDIUM (CVSS 5.3)
Magento-lts is a long-term support alternative to Magento Community Edition (CE). Prior to version 20.16.1, the admin url can be discovered without prior knowledge of it’s location by exploiting the X-Original-Url header on some configurations. This issue has been …
Claude finds 353 zero-days on Packagist
Open source ecosystems have a long tail security problem. Python, Ruby, Javascript, PHP: these ecosystems have millions of packages. The top 100 packages get scrutinized. The next 5,000, not so muc…
The billion-dollar security.txt problem
Yesterday, Sansec discovered an active keylogger at an external site of one of America’s largest banks. The malware was harvesting private information from over 200,000 potential victims. We detect…
Keylogger targets 200,000+ employees at major US bank
Update Jan 15th: the malware appears to have been removed. It was live for about 18 hoursSansec detected a keylogger on the employee store of one of America’s largest banks. The site serves over 2…