Cyber Attacks
Canvas Maker Hit With Second Security Incident in Eight Months
Instructure says its forensics team believes the latest attack is contained — but won't yet say what's been touched.
Policy & Government
Europol Operation PowerOFF Sends 75,000 Warning Letters to DDoS-for-Hire Customers Across 21 Nations
Operation PowerOFF enters its prevention phase — 75,000 warning letters to identified DDoS-for-hire customers, 53 domains seized, 4 arrests, and 3 million criminal accounts as a persistent enforcement asset.
Trending
Krebs Investigation: Anti-DDoS Firm Huge Networks Found Enabling Botnet That Attacked Brazilian ISPs
Krebs on Security reveals Huge Networks — a Brazilian DDoS protection firm — was enabling a Mirai-based botnet attacking other Brazilian ISPs, with the CEO's own SSH keys found in the malicious attack archive.
Trending
NoName057(16): How Russia Gamified DDoS Attacks on Europe with Crypto Rewards
An investigation reveals how NoName057(16) turned DDoS attacks into a cryptocurrency-rewarded 'patriotic game' — with activity increasing after Europol's Operation Eastwood crackdown rather than diminishing.
Cyber Attacks
Three Arrested After Using Stolen Session Cookies to Hijack and Sell 610,000 Roblox Accounts
Ukrainian police have arrested three individuals who systematically used stolen session cookies to access and sell more than 610,000 Roblox accounts, targeting profiles with accumulated in-game currency and rare items and reselling them through Russian criminal platforms for cryptocurrency. KYIV, UKRAINE — Ukrainian law enforcement has detained three suspects in
Data Breaches
Vimeo Confirms Data Breach via Third-Party Vendor Anodot — ShinyHunters Attributed
Vimeo has confirmed a data breach affecting portions of its user database following a compromise at Anodot, a third-party analytics vendor. The breach has been attributed to ShinyHunters, which exploited trusted API connections between Anodot and its enterprise clients to access Vimeo's environment without directly targeting Vimeo'
Cyber Attacks
Attacker Bought 31 WordPress Plugins, Hid a Backdoor for 8 Months, Then Activated It with an Ethereum C2
An attacker purchased a portfolio of 31 trusted WordPress plugins on a public marketplace, embedded a PHP backdoor in a routine-looking update, and left it dormant for eight months before activating it to distribute hidden SEO spam to thousands of websites — with the malware resolving its command-and-control server through an
Vulnerabilities
APT28's Zero-Day Got a Patch — Then Researchers Found It Left a Zero-Click Hole Open
Microsoft's February patch for a Windows zero-day actively exploited by Russia's APT28 blocked the remote code execution path — but left behind a zero-click authentication coercion flaw. Akamai researchers found it while testing the fix. That flaw is now CVE-2026-32202, confirmed exploited in the wild, and added
Cyber Attacks
Mustang Panda Expands Espionage to India’s Banking Sector and Korea-Themed Diplomacy
China-linked Mustang Panda (TA416 / RedDelta) has broadened its targeting from predominantly government and policy entities in the West to India’s banking sector and Korean peninsula policy actors. Using an updated LOTUSLITE backdoor delivered via CHM files and DLL sideloading of legitimate Microsoft-signed executables, the campaign marks a strategic shift
Cyber Attacks
PyPI Package with 1.1M Monthly Downloads Hacked to Push Infostealer
A popular PyPI-hosted Python package, which pulls over 1.1 million downloads per month, has been hijacked by attackers who pushed a malicious update that silently installs the Windows-based W4SP infostealer on developer workstations. The malware harvests credentials, browser cookies, and Discord tokens, marking one of the largest supply chain
Cyber Attacks
Fake CAPTCHA / IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud
A newly-detailed telecommunications fraud campaign uses fake CAPTCHA verification prompts to trick users into sending up to 60 international SMS messages, quietly adding tens of dollars to phone bills while Keitaro traffic distribution campaigns drive parallel crypto-wallet drainer scams. SANTA CLARA, CALIFORNIA — Security researchers have uncovered a massive, multi-channel fraud
Cyber Attacks
Mobile SMS Blasters Prowled Canadian Streets, Blocking 911 Calls and Stealing Phone Data
A “mobile SMS blaster” deployed from vehicles in Toronto mimicked cell towers, hijacked tens of thousands of phones, and caused 13 million network disruptions—temporarily blocking 911 access while sending massive volumes of fraudulent texts under Project Lighthouse. TORONTO, ONTARIO — In a first-of-its-kind cybercrime investigation in Canada, the Toronto Police