Prologue After Antiy released “Sandstorm-style Poisoning Targeting Developer Tool Supply Chains– Sample, Technical and Tactical Analysis of TeamPCP Organizations (Part 1)”, some experts in the industry communicated with us, and the other party paid special attention to a spec……

Abstract TeamPCP is an emerging attack organization that has been extremely active in recent years (active at the end of 2025) and has attracted rapid attention. It focuses on the development ecosystem of GitHub Actions, npm, CI/CD Pipeline and cloud development environment, and carries out sy……

Based on the principles of transparency, accessibility, usability, verifiability and perceptibility of security capabilities, Antiy releases weekly updates of the AVL SDK anti-virus engine and the full set of capabilities to the public every week. 1.Weekly Update     &……

Abstract: During the two-week window from April 29 to May 13, 2026, the Linux kernel continuously disclosed three high-risk local privilege escalation vulnerabilities: Copy Fail (CVE-2026-31431), Dirty Frag (CVE-2026-43284, CVE-2026-43500) and Fragnesia (CVE-2026-46300). Together with the D……

Based on the principles of transparency, accessibility, usability, verifiability and perceptibility of security capabilities, Antiy releases weekly updates of the AVL SDK anti-virus engine and the full set of capabilities to the public every week. 1.Weekly Update     &……

1. Introduction 1.1 Incident Retrospective: The “Chain of Vulnerabilities” from Dirty Frag to Fragnesia In May 2026, the Linux kernel security community experienced a rare chain of security incidents. On May 4th, Kuan-TingChen submitted a patch based on the shared-frag method to……

The original report is in Chinese, and this version is an AI-translated edition. Download PDF View in Chinese Thinking of “Attack Primitive” Based on Dirty Frag Vulnerability Discovery Process — Re-discussion on Human-machine Division of Vulnerability Discovery a……

Based on the principles of transparency, accessibility, usability, verifiability and perceptibility of security capabilities, Antiy releases weekly updates of the AVL SDK anti-virus engine and the full set of capabilities to the public every week. 1.Weekly Update     &……

The original report is in Chinese, and this version is an AI-translated edition. Download PDF View in Chinese AI-powered vulnerability discovery and automated attacks are undoubtedly key focuses for 2026. Previously, Anthropic’s batch of discoveries of a FreeBSD remote root ……

Based on the principles of transparency, accessibility, usability, verifiability and perceptibility of security capabilities, Antiy releases weekly updates of the AVL SDK anti-virus engine and the full set of capabilities to the public every week. 1.Weekly Update                            ……

The original report is in Chinese, and this version is an AI-translated edition. Download PDF View in Chinese Disclaimer: This article is based on a FAQ list compiled by Antiy CERT engineers, completed collaboratively by multiple AI agents, with some content manually revised and r……