Cybersecurity

Cybersecurity

Shadow AI: The Enterprise Security Blind Spot

As AI tools become more accessible, employees are adopting them without formal approval from IT and security teams. While these tools may boost produc

Cybersecurity

Apple's Account Alerts Weaponized in iPhone Phishing Campaign

Apple account change notifications are being abused to send fake iPhone purchase phishing scams within legitimate emails sent from Apple's servers, increasing l

Cybersecurity

The Real Cost of Repeated Credential Breaches

When talking about credential security, the focus usually lands on breach prevention. This makes sense when IBM’s 2025 Cost of a Data Breach Repo

Cybersecurity

Critical Protobuf.js Flaw Exposes JavaScript Apps to Remote Code Execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's P

Cybersecurity

CISA Contractor Exposed AWS Keys in Major Gov Data Leak

Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed cred

Cybersecurity

Enterprise Identity Management Faces Critical Visibility Gap

The Fragmented State of Modern Enterprise Identity Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasing

Cybersecurity

Microsoft Edge Update Breaks Teams Right-Click Paste Feature

Microsoft is warning that a recent Microsoft Edge browser update introduced a bug that breaks right-click paste in chats in the Microsoft Teams desktop client.

Cybersecurity

Cyber Criminals Deploy RATs and Miners via Fake Software

A financially motivated operation codenamed REF1695 has been observed leveraging fake installers to deploy remote access trojans (RATs) and

Cybersecurity

NAKIVO Backup v11.2 Adds Ransomware Defense and Platform Support

NAKIVO Inc. announced the general availability of NAKIVO Backup & Replication v11.2, focused on fast, reliable, and proactive data protection. [...]

Cybersecurity

Ransomware Gangs Exploit Vulnerable Drivers to Disable EDR Tools

Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver (BY

Cybersecurity

Payouts King Ransomware Deploys Hidden VMs to Evade Security

The Payouts King ransomware is using the QEMU emulator as a reverse SSH backdoor to run hidden virtual machines on compromised systems and bypass endpoint secur

Cybersecurity

1,000+ ComfyUI Instances Hijacked in Cryptomining Botnet Blitz

An active campaign has been observed targeting internet-exposed instances running ComfyUI, a popular stable diffusion platform, to enlist them into a cryptocurr

Cybersecurity

How Cybercriminals Evaluate Stolen Card Marketplaces

In cybercrime markets, trust isn't assumed, it's verified. Flare reveals how underground guides teach actors to evaluate carding shops based on data quality, re

Cybersecurity

SparkCat Malware Returns: New Variant Targets Crypto Wallets

Cybersecurity researchers have discovered a new version of the SparkCat malware on the Apple App Store and Google Play Store, more than a year after t

Cybersecurity

Kyrgyzstan Crypto Exchange Grinex Halts After $13.7M Hack

Kyrgyzstan-based cryptocurrency exchange Grinex has suspended its operations after suffering a $13.7 million hack attributed to Western intelligence agencies. [

Cybersecurity

New GPU Attack Exploits Memory Flaws for CPU Takeover

New academic research has identified multiple RowHammer attacks against high-performance graphics processing units (GPUs) that could be exploited to escalate pr

Cybersecurity

MSPs Face Growing Pressure as Cyberattacks Outpace Defenses

Cyberattacks are evolving faster than many MSP and corporate defenses can keep up, with phishing driving much of today's cybercrime. Join our upcoming webinar t

Cybersecurity

Chaos Malware Variant Now Targets Misconfigured Cloud Systems

Cybersecurity researchers have flagged a new variant ofmalware called Chaosthat'scapable of hitting misconfigured cloud deployments, marking an e

Cybersecurity

CISA Alerts on Active Exploitation of Apache ActiveMQ Flaw

CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this month after going undetected for 13

Cybersecurity

North Korean Hackers Distribute 1,700 Malicious Packages Across Developer Ecosystems

The North Korea-linked persistent campaign known as Contagious Interview has spread its tentacles by publishing malicious packages targeting the Go, R

Cybersecurity

Windows Zero-Days Under Active Exploitation

Threat actors are exploiting three recently disclosed Windows security vulnerabilities in attacks aimed at gaining SYSTEM or elevated administrator permissions.

Cybersecurity

Enterprise SOCs Face Multi-OS Attack Challenge

Your attack surface no longer lives on one operating system, and neither do the campaigns targeting it. In enterprise environments, attackers mov

Cybersecurity

Memphis Man Sentenced to 30 Months for DraftKings Account Theft

23-year-old Kamerin Stokes of Memphis, Tennessee, was sentenced to 30 months in prison for selling access to tens of thousands of hacked DraftKings accounts. [.

Cybersecurity

Linux Servers Under Attack: PHP Web Shells Hide Commands in Cookies

Threat actors are increasingly using HTTP cookies as a control channel for PHP-based web shells on Linux servers and to achieve remote code execution, acco

Cybersecurity

Windows Server Restart Issue Emerges After April 2026 Updates

Microsoft warns that some Windows domain controllers are entering restart loops after installing the April 2026 security updates. [...]

Cybersecurity

Masjesu Botnet Emerges as Global DDoS-for-Hire Threat

Cybersecurity researchers have lifted the curtain on a stealthy botnet that's designed for distributed denial-of-service (DDoS) attacks. Called Masjesu, th

Cybersecurity

New ZionSiphon Malware Targets Critical Water Infrastructure

A new malware called ZionSiphon, specifically designed for operational technology, is targeting water treatment and desalination environments to sabotage their

Cybersecurity

Critical Marimo Vulnerability Exploited in Hours

A critical security vulnerability in Marimo, an open-source Python notebook for data science and analysis, has been exploited within 10 hours of public dis

Cybersecurity

Global Operation Dismantles 75K DDoS Users, Shuts 53 Domains

The latest wave of "Operation PowerOFF," on April 13, 2026, targeted the distributed denial-of-service (DDoS) ecosystem and its users across 21 countries. [...]

Cybersecurity

Iran-Linked Hackers Target 300+ Israeli Microsoft 365 Accounts

An Iran-nexus threat actor is suspected to be behind a password-spraying campaign targeting Microsoft 365 environments in Israel and the U.A.E. amid o

Cybersecurity

Microsoft Defender Zero-Day Exploit Escalates to SYSTEM Privileges

A researcher known as "Chaotic Eclipse" has published a proof-of-concept exploit for a second Microsoft Defender zero-day, dubbed "RedSun," in the past two week

Cybersecurity

Iran-Linked Hackers Target U.S. Critical Infrastructure

Iran-affiliated cyber actors are targeting internet-facing operational technology (OT) devices across critical infrastructures in the U.S., including programmab

Cybersecurity

AI-Powered Voice Phishing Platform ATHR Automates Credential Theft

A new cybercrime platform called ATHR can harvest credentials via fully automated voice phishing attacks that use both human operators and AI agents for the soc

Cybersecurity

Developer Machines Exposed: The LiteLLM Supply Chain Risk

The most active piece of enterprise infrastructure in the company is the developer workstation. That laptop is where credentials are created, tested,

Cybersecurity

AI Security Tools Fall Short: Why Alert Triage Isn't Enough

AI-powered SOC tools promise automation, but most only speed up triage instead of reducing real workload. Tines shows how real gains come from end-to-end workfl

Cybersecurity

Hackers Exploit Next.js Flaw to Breach 766 Sites, Steal Credentials

A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal

Cybersecurity

Critical Marimo Flaw Exploited to Deploy NKAbuse Malware

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on Hugging Face Spaces. [..

Cybersecurity

Google Launches DBSC Security Feature in Chrome 146

Google has made Device Bound Session Credentials (DBSC) generally available to all Windows users of its Chrome web browser, months after it began

Cybersecurity

Google Deploys Gemini AI to Combat Malicious Ads

Google says it is increasingly using its Gemini AI models to detect and block harmful ads on its advertising platforms, as scammers and threat actors continue t

Cybersecurity

GlassWorm Campaign Deploys Zig Dropper Targeting Developer IDEs

Cybersecurity researchers have flagged yet another evolution of the ongoing GlassWorm campaign, which employs a new Zig dropper that's designed to stealthi

Cybersecurity

Cisco Patches Critical Webex Flaw, Urges Customer Action

Cisco has released security updates to patch four critical vulnerabilities, including a fixed improper certificate validation flaw in the company's cloud-based

Cybersecurity

Fortinet Issues Emergency Patch for Critical FortiClient EMS Flaw

Fortinet has released out-of-band patches for a critical security flaw impacting FortiClient EMS that it said has been exploited in the wild. The vuln

Cybersecurity

Two Americans Sentenced for North Korean IT Worker Scheme

Two U.S. nationals have been sent to prison for helping North Korean remote information technology (IT) workers to pose as U.S. residents and get hired by over

Cybersecurity

Critical Flowise Flaw Exploited; 12K+ AI Instances at Risk

Threat actors are exploiting a maximum-severity security flaw in Flowise, an open-source artificial intelligence (AI) platform, according to new findings from V

Cybersecurity

McGraw Hill Breach Exposes 13.5M Student and Educator Accounts

The ShinyHunters extortion group has leaked data from 13.5 million McGraw Hill user accounts, stolen after breaching the company's Salesforce environment earlie

Cybersecurity

Android SDK Flaw Compromised 50M Users, Crypto Wallets at Risk

Details have emerged about a now-patched security vulnerability in a widely used third-party Android software development kit (SDK) called EngageLab&n

Cybersecurity

Windows Server 2025 April Update Faces Installation Issues

Microsoft is investigating an issue causing this month's KB5082063 security update to fail to install on some Windows Server 2025 systems. [...]

Cybersecurity

Drift Exchange Hit With $285M Theft Via Novel Nonce Attack

Solana-based decentralized exchange Drift has confirmed that attackers drained about $285 million from the platform during a security incident that took place o

Cybersecurity

Critical Nginx UI Flaw Exploited for Server Takeover

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full server takeover without authenticatio

Cybersecurity

North Korean Hackers Weaponize GitHub for Covert Attack Operations

Threat actors likely associated with the Democratic People's Republic of Korea (DPRK) have been observed using GitHub as command-and-control (C2) infrastru