Third Party Risk
An investigation into the "connective tissue" of the industrial internet reveals that thousands of legacy Serial-to-IP converters are currently vulnerable to unauthenticated remote code execution. SAN JOSE, CA — Forescout’s research division, Vedere Labs, has released a comprehensive security advisory titled "BRIDGE:BREAK," detailing 22 newly
Malware
A sophisticated new botnet, dubbed PowMix, is utilizing highly randomized communication patterns to bypass traditional network defenses, specifically targeting employees across the Czech Republic. PRAGUE, CZ — Security researchers from Cisco Talos have identified a new and resilient malware campaign, named PowMix, that has begun systematically targeting the Czech workforce. The
Nation-State Cyber Threats
A newly identified campaign by the threat actor UAC-0247 is targeting healthcare facilities and government agencies, utilizing "urgent" document lures to deploy info-stealing malware. KYIV, UKRAINE — A persistent cyber-espionage campaign attributed to the threat group UAC-0247 has significantly expanded its operations, targeting Ukrainian hospitals, medical clinics, and government
Cyber Attacks
Security researchers have identified a persistent campaign abusing the popular workflow automation tool n8n to deliver sophisticated malware via phishing emails, bypassing traditional gateway filters. LONDON — Since October 2025, a sophisticated threat actor has been exploiting the webhook functionality of n8n, an open-source workflow automation platform, to facilitate a global
National Security
Swedish authorities have declassified details of a thwarted "destructive" cyberattack against a thermal power plant, warning of a dramatic escalation in hybrid warfare targeting European energy grids. STOCKHOLM — The Swedish government has formally attributed a sophisticated 2025 cyberattack against a domestic thermal power plant to a pro-Russian hacking
Crypto-Crime & Laundering
The disruption of the W3LL Panel dismantles a "full-service" cybercrime ecosystem that bypassed Multi-Factor Authentication (MFA) to target thousands of Microsoft 365 enterprise accounts. ATLANTA, GA — In a major blow to the "Phishing-as-a-Service" (PhaaS) industry, the FBI’s Atlanta Field Office and the Indonesian National Police
Vulnerabilities
The addition of both legacy vulnerabilities and 2026 zero-days signals a "two-front war" for defenders: securing modern cloud-facing infrastructure while purging decade-old exploits still being used in the wild. WASHINGTON, D.C. — The Cybersecurity and Infrastructure Security Agency (CISA) has added seven new vulnerabilities to its Known Exploited
Cyber Analysis
As ransomware becomes a structured extortion economy, a new class of specialist is emerging — one whose most powerful tool isn't code. It's conversation. When MGM Resorts was hit by a ransomware attack in September 2023, the company made a decision that cost it an estimated $100
Trending
A landmark investigation by Infoblox Threat Intel has connected a sophisticated wave of Android banking fraud to industrial-scale scam compounds in Southeast Asia, revealing a harrowing intersection of malware-as-a-service and human trafficking. PHNOM PENH, Cambodia — Security researchers have exposed a direct technical link between a prolific Android banking trojan and
Trending
A persistent threat cluster known as Glassworm has significantly upgraded its arsenal, deploying a specialized "ZigDropper" to compromise software developers by infecting the very IDEs used to build modern applications. AMSTERDAM, NL — Security researchers have uncovered a major evolution in the tactics of the Glassworm threat campaign. Previously
Threat Intelligence
In a sophisticated six-hour window of compromise, the official CPUID website was hijacked to serve malicious payloads to thousands of enthusiasts and IT professionals downloading system monitoring utilities. PARIS, FRANCE — The cybersecurity community is on high alert after CPUID, the developer of the ubiquitous system-profiling tools CPU-Z and HWMonitor, fell
Trending
A new analysis of internet-facing infrastructure has identified nearly 4,000 Industrial Control Systems (ICS) in the United States that remain exposed to cyberattacks, specifically from threat actors targeting critical infrastructure. ANN ARBOR, MI — Security researchers have issued a stark warning after identifying approximately 4,000 industrial control devices — including