Criminal Subscription Service Behind AI-Powered Cyber-Attacks Taken Out By Microsoft
RedVDS cyber-crime-as-a-service platform powering phishing, BEC attacks and other fraud has cost victims millions
Information Security Magazine
Hackers Use Fake PayPal Notices to Steal Credentials, Deploy RMMs
17 hours 37 minutes ago
Phishing attacks have been identified using fake PayPal alerts to exploit remote monitoring and management tools
DeadLock Ransomware Uses Polygon Smart Contracts For Proxy Rotation
19 hours 17 minutes ago
A new DeadLock ransomware operation uses Polygon blockchain smart contracts to manage proxy server addresses
G7 Sets 2034 Deadline for Finance to Adopt Quantum-Safe Systems
22 hours 7 minutes ago
The financial sector should finalize its post-quantum cryptography transition circa 2034, G7 cyber experts said
Microsoft Fixes Three Zero-Days on Busy Patch Tuesday
22 hours 52 minutes ago
Microsoft has patched three zero-day vulnerabilities in the first patch Tuesday of 2026, including one under active exploitation
Impersonation Fraud Drives Record $17bn in Crypto Losses
23 hours 37 minutes ago
Chainalysis estimates $17bn will be lost to crypto scams in 2025 as AI takes hold
CISA Flags Actively Exploited Gogs Vulnerability With No Patch
1 day 16 hours ago
A high-severity security flaw in the Gogs Git service is being actively exploited, leading to remote code execution
SHADOW#REACTOR Campaign Uses Text-Only Staging to Deploy Remcos RAT
1 day 17 hours ago
SHADOW#REACTOR is a multi-stage Windows malware campaign that stealthily deploys the Remcos RAT using complex infection techniques
Phishing Scams Exploit Browser-in-the-Browser Attacks to Steal Facebook Passwords
1 day 18 hours ago
Cybersecurity researchers issue warning over a surge in attacks designed to trick Facebook users into handing over login credentials
New Chinese-Made Malware Framework Targets Linux-Based Cloud Environments
1 day 19 hours ago
Detected by Check Point researchers, VoidLink is a sophisticated malware framework that can be used to implant malware in the most common cloud environments
Parliament Asks Security Pros to Shape Cyber Security and Resilience Bill
1 day 22 hours ago
Lawmakers want the security industry to help them scrutinize the Cyber Security and Resilience Bill
Global Magecart Campaign Targets Six Card Networks
1 day 22 hours ago
Silent Push has discovered a new Magecart campaign targeting six major payment network providers that has been running since 2022
Palo Alto Networks Introduces New Vibe Coding Security Governance Framework
2 days 16 hours ago
Researchers at Palo Alto’s Unit 42 have outlined a list of recommended security controls for vibe coding tools
CISA Closes Ten Emergency Directives After Federal Cyber Reviews
2 days 16 hours ago
US agency CISA has retired ten Emergency Directives issued between 2019 and 2024, marking a new step in managing federal cyber-risk
California Shuts Down Health Data Resales By Unregistered Brokers
2 days 17 hours ago
California privacy regulator, the CPPA, is cracking down on data brokers trading personal data without authorization
World Economic Forum: Cyber-fraud overtakes ransomware as business leaders' top cyber-security concern
2 days 19 hours ago
“Pervasive” threat of phishing, invoice scams and other cyber-enabled fraud is at “record highs”, warns WEF Cybersecurity Outlook 2026
Illicit Crypto Activity Hits Record $158bn in 2025
2 days 23 hours ago
TRM Labs says illegal crypto flows into digital wallets increased to $158bn in 2025
BreachForums Database Leak Turns the Tables on Threat Actors
3 days ago
A database featuring 300,000+ users of notorious hacking forum BreachForums has been leaked online
Europol Leads Global Crackdown on Black Axe Cybercrime Gang, 34 Arrested
5 days 20 hours ago
Europol-backed operation targets group behind numerous BEC attacks and romance scams
World Economic Forum: Deepfake Face-Swapping Tools Are Creating Critical Security Risks
5 days 21 hours ago
Researchers at the World Economic Forum have shown that threat actors can use commercial deepfake tools to bypass corporate security protections
Checked
6 hours 37 minutes ago