Cyber Crime
The Russia-linked exchange halts all operations after a high-precision attack empties its hot wallets, with leadership blaming Western intelligence services for the collapse. MOSCOW, RUSSIA — Grinex, a prominent cryptocurrency exchange previously blacklisted by international regulators for its alleged role in money laundering and sanctions evasion, has officially suspended all trading
Vulnerabilities
A disgruntled security researcher has publicly released proof-of-concept code for three critical vulnerabilities in Microsoft Defender, leaving over a billion users exposed as two flaws remain unpatched. REDMOND, WA — The global cybersecurity community is on high alert following the unauthorized leak and subsequent exploitation of three zero-day vulnerabilities within Microsoft
Cyber Attacks
The decentralized social network faces its first major infrastructure test as malicious traffic floods its servers, causing intermittent outages for millions of users. SEATTLE, WA — Bluesky, the decentralized social media platform often viewed as the primary alternative to X (formerly Twitter), has confirmed that a Distributed Denial of Service (DDoS)
The Russia-linked exchange halts all operations after a high-precision attack empties its hot wallets, with leadership blaming Western intelligence services for the collapse. MOSCOW, RUSSIA — Grinex, a prominent cryptocurrency exchange previously blacklisted by international regulators for its alleged role in money laundering and sanctions evasion, has officially suspended all trading
A disgruntled security researcher has publicly released proof-of-concept code for three critical vulnerabilities in Microsoft Defender, leaving over a billion users exposed as two flaws remain unpatched. REDMOND, WA — The global cybersecurity community is on high alert following the unauthorized leak and subsequent exploitation of three zero-day vulnerabilities within Microsoft
The decentralized social network faces its first major infrastructure test as malicious traffic floods its servers, causing intermittent outages for millions of users. SEATTLE, WA — Bluesky, the decentralized social media platform often viewed as the primary alternative to X (formerly Twitter), has confirmed that a Distributed Denial of Service (DDoS)
The sentencing of Nathan Latka’s co-conspirator highlights the severe legal repercussions for "credential stuffing" and the lucrative black market for stolen digital identities. NEW YORK, NY — A second individual involved in the massive November 2022 cyberattack against the sports betting giant DraftKings has been sentenced to 30
As Congress passes a last-minute, 10-day extension for key spy powers, the cybersecurity industry watches closely to see if the "backdoor search" debate will fundamentally change data privacy for US enterprises. WASHINGTON, D.C. — The U.S. House of Representatives has approved a temporary, short-term extension of Section
In a significant legislative push, the Senate Commerce, Science, and Transportation Committee has cleared two critical cybersecurity bills aimed at hardening U.S. space infrastructure and accelerating the transition to quantum-resistant encryption. WASHINGTON, D.C. — U.S. lawmakers have taken a major step toward addressing "next-frontier" digital threats.
A newly discovered hybrid threat, ZionSiphon, marks a significant escalation in industrial warfare, moving beyond data theft toward the physical sabotage of desalination and treatment plants. TEL AVIV, ISRAEL — Cybersecurity researchers have identified a sophisticated new malware strain, dubbed ZionSiphon, engineered specifically to infiltrate and sabotage Israeli water infrastructure. Unlike
The sentencing of Nathan Latka’s co-conspirator highlights the severe legal repercussions for "credential stuffing" and the lucrative black market for stolen digital identities. NEW YORK, NY — A second individual involved in the massive November 2022 cyberattack against the sports betting giant DraftKings has been sentenced to 30
The "Jolokia" vulnerability allows for unauthenticated Remote Code Execution, posing a significant risk to the message-brokering infrastructure that underpins global finance and logistics. WASHINGTON, D.C. — The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical input validation vulnerability in Apache ActiveMQ to its Known Exploited
As Congress passes a last-minute, 10-day extension for key spy powers, the cybersecurity industry watches closely to see if the "backdoor search" debate will fundamentally change data privacy for US enterprises. WASHINGTON, D.C. — The U.S. House of Representatives has approved a temporary, short-term extension of Section
In a significant legislative push, the Senate Commerce, Science, and Transportation Committee has cleared two critical cybersecurity bills aimed at hardening U.S. space infrastructure and accelerating the transition to quantum-resistant encryption. WASHINGTON, D.C. — U.S. lawmakers have taken a major step toward addressing "next-frontier" digital threats.
The theft of a high-profile artist's retirement fund highlights a persistent vulnerability in mobile app marketplaces and the rising sophistication of "brand impersonation" attacks. SAN FRANCISCO, CA — Garrett Dutton, better known as the alternative hip-hop musician G. Love, has gone public with the loss of his
In a massive coordinated strike, Europol, the FBI, and international partners disrupt the "Booter" service ecosystem, signaling a shift toward targeting the customers of cybercrime platforms. THE HAGUE, NL — Law enforcement agencies from across the globe have concluded a major phase of Operation PowerOFF, a sustained international effort
A sophisticated new botnet, dubbed PowMix, is utilizing highly randomized communication patterns to bypass traditional network defenses, specifically targeting employees across the Czech Republic. PRAGUE, CZ — Security researchers from Cisco Talos have identified a new and resilient malware campaign, named PowMix, that has begun systematically targeting the Czech workforce. The
In an unprecedented open letter to business leaders, UK ministers and the NCSC warn that the "defensive advantage" is shrinking as AI models lower the barrier for sophisticated cyberattacks. LONDON, UK — The UK Government has issued a stark warning regarding the escalating cybersecurity risks posed by the rapid
A newly identified campaign by the threat actor UAC-0247 is targeting healthcare facilities and government agencies, utilizing "urgent" document lures to deploy info-stealing malware. KYIV, UKRAINE — A persistent cyber-espionage campaign attributed to the threat group UAC-0247 has significantly expanded its operations, targeting Ukrainian hospitals, medical clinics, and government
A sophisticated supply chain attack exploits the ‘Shell Commands’ plugin for Obsidian, delivering the PhantomPulse Trojan to high-value targets in the finance and cryptocurrency sectors. RESEARCH TRIANGLE PARK, NC — Security researchers have uncovered an elaborate malware campaign targeting users of the popular note-taking app, Obsidian. The campaign, dubbed "Phantom
The National Institute of Standards and Technology pivots to a prioritization model, focusing enrichment efforts on critical software and known exploited vulnerabilities as the backlog reaches historic levels. GAITHERSBURG, MD — The National Institute of Standards and Technology (NIST) has announced a fundamental shift in how it manages the National Vulnerability
