State Surveillance Expands Through AI and Biometric Tracking Across 31 High Risk Nations
A new analysis of 193 countries finds that government digital surveillance poses high risk in 31 nations, with commercial spyware and AI tools accelerating the threat globally.
The Latest
Gentlemen RaaS Deploys Suite of EDR Evasion Tools to Sidestep Security Defenses
ESET researchers found that the Gentlemen ransomware gang uses a custom tool called GentleKiller with eight variants to disable over…
AI Generated Nudes Used in Cyberstalking Campaign Against College Student
Federal prosecutors charged a New York man with cyberstalking for allegedly using AI generated nudes and fake social media profiles…
HazyBeacon Exploits AWS Lambda URLs for Covert Command and Control Operations
The HazyBeacon campaign uses AWS Lambda Function URLs as stealthy relays for command and control, targeting Southeast Asian government networks.
FortiBleed Campaign Exploits 73,000 Fortinet Firewalls Across 194 Countries
A vast automated campaign attributed to Russian speaking actors has compromised Fortinet firewalls globally by leveraging stolen credentials harvested by…
International Crackdown Cleans Thousands of Sites Infected by SocGholish
Law enforcement agencies cleaned nearly 15,000 compromised WordPress sites by removing backdoors and malware that had been redirecting visitors to…
Apple Patches Beats Studio Buds Bug Enabling Remote Audio Eavesdropping
Apple's firmware update addresses a Bluetooth vulnerability that could let nearby attackers hijack Beats Studio Buds to secretly listen through…
AWS Unveils Continuum for Automated Code Vulnerability Lifecycle
AWS's new Continuum service automates the entire code vulnerability lifecycle from discovery through remediation using frontier AI models, shifting from…
Persistent Access Through Tailscale and OpenSSH Bypasses C2 Shutdown
A junior attacker used Tailscale and OpenSSH as a backup channel to maintain access to a compromised automotive business after…
New Loaders BabaDeda, Lorem Ipsum, and Potemkin Spread via ClickFix Lures
Three new malware loaders are being distributed through ClickFix social engineering campaigns targeting education, finance, and other sectors with fake…
Expired TLS Certificate Disrupts Microsoft 365 Connectivity Testing Tool
The connectivity.office.com domain used by IT teams to verify Microsoft 365 access is showing TLS certificate expired errors, disrupting enterprise diagnostic workflows.
DPAPISnoop Tool Gains CREDHIST Extraction for Offline Password Cracking
The updated DPAPISnoop tool parses Windows CREDHIST files to generate crackable hashes that reveal users' complete password change history through…
Pyongyang Developers Weaponize VS Code Extensions for Cryptocurrency Heists
A North Korean threat group is targeting developers with phishing emails that lead to malicious VS Code projects, deploying cross…
Cisco Patches Catalyst SD-WAN Manager Zero-Day Flaw Used in Root Privilege Escalation Attacks
Cisco urges immediate patching of CVE-2026-20262, a root privilege escalation zero-day in Catalyst SD-WAN Manager that attackers are actively exploiting.
Spotlight
ShinyHunters Threatens to Leak Stolen Council of Europe Data
The Council of Europe is verifying claims by the ShinyHunters group that it stole hundreds of thousands of sensitive documents including payroll data and medical records.
FBI Warns of In Person Cash Collections in Cryptocurrency Scams
The FBI warns that fraudsters are using couriers to collect cash from victims of cryptocurrency investment scams after traditional bank transfers are blocked.
Critical SearchLeak Chain Enabled One-Click Data Theft via Microsoft 365 Copilot
The SearchLeak chain weaponized three vulnerabilities in Microsoft 365 Copilot to exfiltrate sensitive data before server side sanitization could stop it.
Stealthy Cyber Espionage Hits Medical Research Platform
UNC6508 deployed InfiniteRed malware on REDCap servers at a North American medical research organization, remaining undetected for over a year while exfiltrating sensitive data.
Features
Hidden Backdoor Attack Targets Three Popular WordPress Plugins
Attackers tampered with JavaScript files for three popular WordPress plugins, creating hidden admin accounts and web shells only when site…
Fabricated Breach Reports Force Maine AG to Shutter Public Database
An unidentified third party exploited Maine's automated breach reporting system to post fake security incidents, prompting the state to temporarily…
Coordinated Campaign of 152 Chrome Extensions Falsifies Ad Traffic
A network of 152 Chrome extensions posing as wallpaper tools secretly collects user data and generates fake search traffic to…
Open Source Toolkit Automates Bug Bounty Workflows with Local AI Models
BugHunter allows security researchers to run vulnerability testing and generate submission ready reports from a single terminal command using free…
AI-Powered Fuzzing Pipeline Uncovers $500,000 in Google Bugs
An AI-driven fuzzing pipeline uncovered over $500,000 in bug bounties from Google by exploiting access control failures across roughly 1,500…
Law Enforcement Dismantles AI Driven Phishing Network Tied to 3.8 Million Stolen Credit Cards
The FBI and partners seized servers, a Telegram bot, and cryptocurrency wallets, while redirecting thousands of phishing domains to a…
