Cisco on Wednesday announced fixes for two critical and six high-severity vulnerabilities that could be exploited for authentication bypass, remote code execution, privilege escalation, and information disclosure. One of the critical bugs, tracked as CVE-2026-20160, impacts Cisco Smart Software Manager… Read More "Cisco Patches Critical and High-Severity Vulnerabilities"
Ravie LakshmananApr 02, 2026Cryptomining / Malware A financially motivated operation codenamed REF1695 has been observed leveraging fake installers to deploy remote access trojans (RATs) and cryptocurrency miners since November 2023. “Beyond cryptomining, the threat actor monetizes infections through CPA (Cost Per Action) fraud, directing victims… Read More "Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners"
The PhaaS toolkit is offering a host of features to its affiliates, including modules for access weaponization, email harvesting, reconnaissance capabilities, and a built-in webmail interface, all powered through Ai automation, the researchers added. EvilTokens was found operating through bots… Read More "EvilTokens abuses Microsoft device code flow for account takeovers"
When every minute counts, preparation and precision can mean the difference between disruption and disaster 03 Nov 2025 • , 5 min. read Network defenders are feeling the heat. The number of data breaches Verizon investigated last year, as a… Read More "5 things to do after discovering a cyberattack"
A newly identified botnet loader is shifting command-and-control (C2) operations onto the Polygon blockchain, eliminating the central servers that authorities and security firms have historically targeted to dismantle malicious networks. Aeternum C2, uncovered by Qrator Research Lab while monitoring cybercrime… Read More "Aeternum Botnet Shifts Command Control to Polygon Blockchain"
Nacogdoches Memorial Hospital (NMH) is notifying 250,000 people that their personal and health information was compromised in a data breach. The incident, the hospital says, occurred on January 31, after a threat actor hacked into its internal network and information… Read More "250,000 Affected by Data Breach at Nacogdoches Memorial Hospital"
Ravie LakshmananApr 02, 2026Surveillance / Mobile Security Meta-owned messaging platform WhatsApp said it alerted about 200 users who were tricked into installing a bogus version of its iOS app that was infected with spyware. According to reports from Italian newspaper La Repubblica… Read More "WhatsApp Alerts 200 Users After Fake iOS App Installed Spyware; Italian Firm Faces Action"
Think you could never fall for an online scam? Think again. Here’s how scammers could exploit psychology to deceive you – and what you can do to stay one step ahead 04 Nov 2025 Why do people fall for scams… Read More "How social engineering really works"
International law enforcement operation led by Europol targets network of teenagers and young adults involved in ransomware attacks, extortion and other crimes Source link Read More "‘Project Compass’ Cracks Down on ‘The Com’: 30 Members of Notorious Cybercrime Gang Arrested"
In the early morning last September 30, hundreds of federal agents swarmed the South Shore Apartments, a beige brick building on Chicago’s South Side. As feds in body armor rappelled down from a Black Hawk helicopter overhead, others crashed through… Read More "Unmasking the Paramilitary Agents Behind Trump’s Violent Immigration Crackdown"
