Self-Propagating Worm Targets npm Packages, Steals Developer Tokens
Cybersecurity researchers have flagged a fresh set of packages that have been compromised by bad actors to deliver a self-propagating worm that spreads through
Cybersecurity
253 articles
Robinhood Flaw Exploited for Large-Scale Phishing Attack
Online trading platform Robinhood's account creation process was exploited by threat actors to inject phishing messages into legitimate emails, tricking users i
Harvester's Linux GoGra Backdoor Targets South Asia
The threat actor known as Harvester has been attributed to a new Linux version of its GoGra backdoor deployed as part of attacks likely targeting entities in So
73 Malicious Extensions Hide in OpenVSX Ecosystem
A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious after an update. [...]
AI Agent Platform Moltbook Exposed 1.5M API Tokens
On January 31, 2026, researchers disclosed that Moltbook, a social network built for AI agents, had left its database wide open, exposing 35,000 email addresses
Canadian Police Bust SMS Blaster Ring in Toronto
Canadian authorities have arrested three men for operating an "SMS blaster" device that pretends to be a cellular tower to send phishing texts to nearby phones.
Microsoft Releases Emergency Patch for Critical ASP.NET Core Flaw
Microsoft has released out-of-band updates to address a security vulnerability in ASP.NET Core that could allow an attacker to escalate privileges. The vulnerab
Chinese National Extradited to US Over Cyberespionage
A Chinese national accused of carrying out cyberespionage operations for China's intelligence services has been extradited from Italy to the United States to fa
Lotus Wiper Malware Strikes Venezuelan Energy Infrastructure
Cybersecurity researchers have discovered a previously undocumented data wiper that has been used in attacks targeting Venezuela at the end of last year and the
Social Media Scams Cost Americans Over $2.1B in 2025
The U.S. Federal Trade Commission (FTC) warned of a massive increase in losses from social media scams since 2020, exceeding $2.1 billion in 2025. [...]
New LOTUSLITE Malware Variant Targets Indian Banks
Cybersecurity researchers have discovered a new variant of a known malware called LOTUSLITE that's distributed via a theme related to India's banking sector. "T
Proactive Threat Detection: Catching Cyberattacks Early
On Thursday, April 30 at 2:00 PM ET, BleepingComputer will host a live webinar with threat intelligence company Flare and threat intelligence researcher Tammy H
Critical Terrarium Sandbox Flaw Allows Root Code Execution
A critical security vulnerability has been disclosed in a Python-based sandbox called Terrarium that could result in arbitrary code execution. The vulnerability
Popular Python Package Compromised in Data Theft Attack
An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive developer data and cryptocurrency w
Ransomware Gang Deploys Proxy Malware to 1,570+ Victims
Threat actors associated with The Gentlemen ransomware‑as‑a‑service (RaaS) operation have been observed attempting to deploy a known proxy malware called System
Crypto Heist Accomplice Sentenced to Nearly 6 Years
22-year-old Evan Tangeman of Newport Beach, California, was sentenced to 70 months in prison for laundering funds stolen in a massive $230 million cryptocurren
22 Critical Flaws Found in Serial-to-IP Converters
Cybersecurity researchers have identified 22 new vulnerabilities in popular models of serial-to-IP converters from Lantronix and Silex that could be exploited t
Medtronic Confirms Major Security Breach Affecting Millions
Medical device giant Medtronic disclosed last week that hackers breached its network and accessed data in "certain corporate IT systems." [...]
Ransomware Negotiator Guilty in BlackCat Attack Scheme
A third individual who was employed as a ransomware negotiator has pleaded guilty to conducting ransomware attacks against U.S. companies in 2023. Angelo Martin
ADT Data Breach Compromises 5.5 Million Customer Records
The ShinyHunters extortion group stole the personal information of 5.5 million individuals after breaching the systems of home security giant ADT earlier this m
Why Your SOC's Response Time Lags Behind Industry Leaders
Security teams often present MTTR as an internal KPI. Leadership sees it differently: every hour a threat dwells inside the environment is an hour of potential
Voice Deepfakes: A Growing Threat to Enterprise Security
Three seconds of audio is all it takes to clone a voice for fraud. Adaptive Security shows how deepfake calls trick employees into sending real money—and why mo
Stolen Credentials: Why Attackers Skip Exploits
The cybersecurity industry has spent the last several years chasing sophisticated threats like zero-days, supply chain compromises, and AI-generated exploits. H
Outlook.com Hit by Major Outage Blocking User Access
Microsoft is investigating an ongoing Outlook.com outage that is causing intermittent signing issues and preventing customers from accessing their mailboxes. [.
Hackers Exploit Meta's AI Bot to Breach High-Profile Instagram Accounts
The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages
NGate Malware Evolves: Hijacks HandyPay App to Steal NFC Data
Cybersecurity researchers have discovered a new iteration of an Android malware family calledNGate that has been found to abuse a legitimate application called&
Itron Reports Unauthorized Access to Internal IT Systems
Itron, Inc. has disclosed, via an 8-K filing with the U.S. Securities and Exchange Commission (SEC), a cybersecurity incident in which an unauthorized third par
Google Fixes Critical Prompt Injection Flaw in Antigravity IDE
Cybersecurity researchers have discovered a vulnerability in Google's agentic integrated development environment (IDE), Antigravity, that could be exploited to
Microsoft Overhauls Windows Insider Program for Better Testing
Microsoft says it's rolling out a revamped Windows Insider Program experience as part of the broader plans to address performance and reliability concerns affec
CISA Adds 8 Critical Exploited Vulnerabilities to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog,
Microsoft Teams Exploited to Distribute Custom Snow Malware
A threat group tracked as UNC6692 uses social engineering to deploy a new, custom malware suite named 'Snow' which includes a browser extension, a tunneler, and
Critical SGLang Vulnerability Exposes Systems to Remote Code Execution
A critical security vulnerability has been disclosed in SGLang that, if successfully exploited, could result in remote code execution on susceptible systems. Th
ADT Confirms Data Breach Following ShinyHunters Extortion Threat
Home security giant ADT has confirmed a data breach after the ShinyHunters extortion group threatened to leak stolen data unless a ransom is paid. [...]
Attackers Exploit Trusted Tools to Breach Systems
Monday’s recap shows the same pattern in different places. A third-party tool becomes a way in, then leads to internal access. A trusted download path is briefl
BlackFile Extortion Group Escalates Vishing Campaign
A new financially motivated hacking group tracked as BlackFile has been linked to a wave of data theft and extortion attacks against retail and hospitality orga
Why AI Projects Fail After the Initial Demo Phase
The fastest way to fall in love with an AI tool is to watch the demo. Everything moves quickly. Prompts land cleanly. The system produces impressive outputs in
Firestarter Malware Persists Despite Cisco Security Patches
Cybersecurity agencies in the U.S. and U.K. are warning about a custom malware called Firestarter persisting on Cisco Firepower and Secure Firewall devices runn
ZionSiphon Malware Targets Israeli Water Infrastructure
Cybersecurity researchers have flagged a new malware called ZionSiphon that appears to be specifically designed to target Israeli water treatment and desalinati
Microsoft Enhances Windows Update with New Restart Controls
Microsoft is rolling out Windows Update improvements that give users more control over how updates are installed while reducing disruption from frequent or poor
Critical Design Flaw in Model Context Protocol Risks AI Supply Chain
Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture that could pave the way for remote
Microsoft Brings Passkey Authentication to Windows Entra
Microsoft will roll out passkey support for phishing-resistant passwordless authentication to Microsoft Entra‑protected resources from Windows devices starting
Vercel Confirms Breach Linked to Third-Party AI Tool
Web infrastructure provider Vercel has disclosed a security breach that allows bad actors to gain unauthorized access to "certain" internal Vercel systems. The
Critical Linux Vulnerability Allows Unauthorized Root Access
A new vulnerability dubbed Pack2TheRoot could be exploited in the PackageKit daemon to allow local Linux users to install or remove system packages and gain roo
Sanctioned Crypto Exchange Grinex Shuts Down After $13.74M Hack
Grinex, a Kyrgyzstan-incorporated cryptocurrency exchange sanctioned by the U.K. and the U.S. last year, said it's suspending operations after it blamed Western
DORA's Article 9: Why Credential Management Is Now EU Financial Law
Article 9 of DORA makes authentication and access control a legal obligation for EU financial entities. Here is what the regulation requires, and what a breach
Nexcorium Mirai Variant Targets DVRs in Growing Botnet Campaign
Threat actors are exploiting security flaws in TBK DVR and end‑of‑life (EoL) TP-Link Wi-Fi routers to deploy Mirai-botnet variants on compromised devices, accor
10,000+ Zimbra Servers Face Active XSS Attack Threat
Over 10,000 Zimbra Collaboration Suite (ZCS) instances exposed online are vulnerable to ongoing attacks exploiting a cross-site scripting (XSS) security flaw. [
Microsoft Defender Zero-Days Under Active Attack
Huntress is warning that threat actors are exploiting three recently disclosed security flaws in Microsoft Defender to gain elevated privileges in compromised s
Microsoft Gives Enterprise Admins Control Over Copilot Removal
Microsoft says IT administrators can now uninstall the AI-powered Copilot digital assistant from enterprise devices using a new policy setting, which has become
Google Blocks 8.3B Ads, Overhauls Android Privacy
Google this week announced a new set of Play policy updates to strengthen user privacy and protect businesses against fraud, even as it revealed it blocked or r