Key TakeawaysAttack volumes decrease: The share of organizations affected by ransomware decreased globally in 2025.Evasion tactics escalate: Attackers increasingly deploy…
News
Key TakeawaysCritical cPanel vulnerability: CVE-2026-41940 maintains a 9.8 CVSS score and facilitates complete administrative privilege escalation.Global attack infrastructure: Threat intelligence…
Key TakeawaysRogue plugin: A malicious version of the Checkmarx Jenkins AST plugin was published on the Jenkins Marketplace.TeamPCP claims responsibility:…
Key TakeawaysZero-day discovery: GTIG identified a criminal actor utilizing an AI-developed zero-day exploit for the first time.Exploitation event prevented: Proactive…
Key TakeawaysMalvertising campaign: Attackers abuse Google Ads and legitimate Claude.ai shared chats to push macOS malware.Terminal commands weaponized: Fake installation…
Key TakeawaysRansomware incident: Italian jewelry manufacturer Unoaerre confirmed it suffered a confirmed cyberattack on May 10, 2026.Operations temporarily halted: Management…
Frank Koelmel – Bitdefender Bitdefender appoints Frank Koelmel as Chief Revenue Officer for its Business Solutions Group, adding leadership to…
From ransomware operators landing in U.S. prisons to a DNSSEC failure briefly knocking millions of German websites offline, this week’s…
Key TakeawaysDatabase deletion incident: Following employment termination, two brothers unlawfully deleted approximately 96 federal government databases.Federal jury conviction: Sohaib Akhter…
Key TakeawaysCloud credential theft: SentinelLABS identified PCPJack, a framework that worms across cloud infrastructure and removes TeamPCP artifacts.No cryptominers deployed:…
Key TakeawaysThreat actor claims: The RansomHouse hacking group claimed responsibility for the cyberattack targeting the Trellix cybersecurity firm.Incident status confirmed:…
Key TakeawaysCompromised user data: HIBP said the breach impacted 447,600 Woflow accounts, exposing email addresses, names, phone numbers, and physical…
Key TakeawaysSignal disruption: A rogue General Alarm caused a 48-minute operational halt to three high-speed trains due to cloned radio…
VoIP Providers, Preferred by Attackers for High-Volume, Cheaper Email Scams that Reuse Phone Numbers
Key TakeawaysVoIP provider abuse: Six of the ten largest scam campaigns relied on VoIP infrastructure due to the ease of…
Key TakeawaysMalicious NuGet packages: Five compromised packages impersonating Chinese .NET libraries under the publisher account bmrxntfj.Extensive data theft: The .NET…
Key TakeawaysActive exploitation: The CopyFail bug is actively exploited and has been added to CISA's Known Exploited Vulnerabilities (KEV) catalog.Broad…
Key TakeawaysCritical vulnerability: Palo Alto Networks is patching CVE-2026-0300, a zero-day exploited to hack specific firewall models.Unauthenticated execution: The buffer…
Key TakeawaysConfirmed cyber incident: IBM confirmed a security breach at its Italian subsidiary, Sistemi Informativi, on May 3, 2026.State-sponsored espionage:…
Key TakeawaysUK online safety law concerns: Coalition warns law may restrict internet access, impact privacy, and fail improving child safetyExpanded…
Key TakeawaysPrison sentencing: Deniss Zolotarjovs received a 102-month prison sentence for his operational role in sophisticated ransomware campaigns linked to…
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular
