theft

March 26, 2026

Critical Ivanti EPMM Vulnerabilities Expose Systems to Arbitrary Code Execution Attacks

In February 2026, threat actors actively exploited two critical remote code execution (RCE) vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM).…
Read More »
March 26, 2026

Leak Bazaar Converts Stolen Corporate Data Into Organized Criminal Marketplace

A new cybercriminal service named “Leak Bazaar” has emerged on the Russian-speaking TierOne forum, advertised by user Snow of SnowTeam…
Read More »
March 25, 2026

China-Backed Hackers Target Southeast Asian Military Systems in Ongoing Spy Campaign

China-linked threat actors have been identified targeting Southeast Asian military networks in a long-running cyber espionage campaign focused on intelligence…
Read More »
March 25, 2026

Five Malicious npm Packages Target Crypto Developers, Steal Wallet Keys via Telegram

Five malicious npm packages impersonating popular crypto libraries are stealing wallet keys from Solana and Ethereum developers and exfiltrating them…
Read More »
March 24, 2026

Tycoon2FA Operators Resume Cloud Account Phishing Following Infrastructure Disruption

Tycoon 2FAoperators have restarted large-scale cloud account phishing just days after law enforcement and industry partners disrupted the platform’s core…
Read More »
March 24, 2026

Russian Access Broker Jailed for Facilitating Ransomware Attacks Targeting U.S. Companies

A United States federal court sentenced Aleksei Volkov, a 26-year-old Russian national, to 81 months in prison for operating as…
Read More »
March 23, 2026

Libyan Refinery Targeted in Prolonged Spy Campaign With AsyncRAT

A targeted cyber espionage campaign against Libyan organizations compromised a Libyan oil refinery, a telecommunications provider, and a state institution…
Read More »
March 23, 2026

MioLab MacOS Stealer Expands With ClickFix, Wallet Theft, Team APIs

As Apple’s macOS footprint grows in both consumer and enterprise environments, dedicated infostealers like MioLab (aka Nova) demonstrate that Macs…
Read More »
March 21, 2026

Trivy Vulnerability Scanner Compromised to Inject Malicious Scripts That Steal Credentials

Ahighly sophisticated supply chain attack has successfully compromised the official Trivy GitHub Actions repository, severely impacting continuous integration environments. Discovered…
Read More »
March 20, 2026

Copyright Complaint Lures Linked to New PureLog Stealer Credential Theft Wave

Criminals are actively deploying the PureLog Stealer malware through a sophisticated, multi-stage assault campaign that disguises itself as legitimate copyright…
Read More »
March 17, 2026

Google Warns Ransomware Groups Shift to Data Theft as Profits Decline

Google is warning that ransomware gangs are reinventing their business model as traditional encryption‑for‑ransom attacks become less profitable and data‑theft…
Read More »
March 17, 2026

Iranian Hackers Use Compromised Cameras for Regional Surveillance

Iranian cyber operations are expanding, focusing on US organizations and utilizing internet-connected cameras across the Middle East for intelligence and…
Read More »
March 16, 2026

IBM Discovers ‘Slopoly’ AI-Generated Malware Linked to Hive0163 Ransomware

Hive0163, a financially driven ransomware group, is testing a probable AI-generated malware framework named “Slopoly,” signaling a rapid shift toward…
Read More »
March 16, 2026

CamelClone Uses Public File-Sharing Sites in Government Cyberattacks

A new cyber espionage campaign dubbed Operation CamelClone is targeting government and strategic sectors across several geopolitically significant regions. The…
Read More »
March 14, 2026

Storm-2561 Uses SEO Poisoning, Fake Signed VPN Apps to Steal Enterprise Credentials

A financially motivated threat actor tracked as Storm-2561 is running a credential theft campaign that abuses SEO poisoning and fake,…
Read More »
March 14, 2026

Global Authorities Take Down 45,000 Malicious IPs Used in Ransomware Campaigns

An unprecedented international law enforcement effort has successfully dismantled a major cybercrime network. Coordinated by INTERPOL, this initiative targeted critical…
Read More »
March 13, 2026

Starbucks Data Breach Exposes Personal Data of Hundreds of Users

Starbucks Corporation disclosed a targeted cybersecurity incident on February 6, 2026, impacting approximately 900 employees. This breach compromised their personal…
Read More »
March 13, 2026

Iran War Bait Fuels TA453, TA473 Phishing Campaigns

TA453, TA473, and several emerging threat clusters are exploiting breaking news about the Iran war to run highly targeted phishing…
Read More »
March 13, 2026

New Critical MediaTek Vulnerability Exposes Android Phone PINs to Theft in 45 seconds

A newly discovered hardware vulnerability in the MediaTek Dimensity 7300 chipset is putting millions of Android users at risk. By…
Read More »
March 13, 2026

Hackers Exploit CloudFlare Anti-Security to Steal Microsoft 365 Login Credentials

A recent Microsoft 365 credential harvesting campaign shows attackers exploiting CloudFlare’s protective features to shield malicious phishing sites from security…
Read More »

Previous page Next page