ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories

Microsoft Edge stores saved passwords in plaintext on Windows systems, exposing credentials to local attackers with minimal effort. Researchers discovered the flaw affects users who enable password-saving functionality in the browser. An attacker with access to a compromised device can extract these credentials directly from the browser's storage without requiring administrative privileges.

Industrial control systems face escalating threats from multiple zero-day vulnerabilities discovered in the wild. Vendors have issued emergency patch alerts affecting critical infrastructure components used in energy, manufacturing, and utilities sectors. Organizations running unpatched systems face immediate compromise risk from both opportunistic and targeted attacks.

Supply chain attacks continue dominating threat landscapes. Malicious packages distributed through package repositories, counterfeit mobile applications, and compromised DNS configurations enable attackers to establish persistent footholds in enterprise and consumer environments. Threat actors actively exploit these vectors with minimal sophistication, relying on social engineering and credential theft rather than complex exploits.

Stolen credential dumps circulate freely across Discord servers and Telegram channels, creating a marketplace for compromised login credentials. Attackers leverage these credentials for initial access into networks, bypassing authentication controls entirely. Organizations report that the majority of breaches begin with compromised or weak credentials rather than zero-day exploits.

Scam advertisements targeting technology users deliver malware payloads through legitimate-looking promotional content. Fake applications masquerading as legitimate software harvest credentials and device data. Forgotten DNS records point to attacker infrastructure, redirecting traffic and enabling man-in-the-middle attacks.

The attack chains rarely require technical sophistication. Instead, defenders face an onslaught of commodity threats that exploit basic security hygiene failures. Organizations neglecting password management, patch application, and supply chain verification remain vulnerable to elementary attacks. The threat landscape demonstrates that defensive basics remain the primary barrier between security and compromise.