Data Security News
The Hacker News
- Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Commentsby info@thehackernews.com (The Hacker News)
An unknown threat actor has been observed leveraging paid or promoted posts on legitimate news websites to drum up buzz for their warez, according to […]
- Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Developmentby info@thehackernews.com (The Hacker News)
Microsoft has formally disclosed that it's working to release a patch to address a Defender zero-day codenamed RoguePlanet. The vulnerability has […]
- Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offlineby info@thehackernews.com (The Hacker News)
A French-speaking attacker broke into a small French automotive business, planted a keylogger, and stole banking and email credentials. Ordinary […]
- Adversarial Exposure Validation Turns Security Visibility into Confident Prioritizationby info@thehackernews.com (The Hacker News)
For security teams, the findings never stop, but confidence in knowing which ones matter is becoming harder to maintain. The problem is no longer […]
- Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chatsby info@thehackernews.com (The Hacker News)
Cybersecurity researchers have flagged a "coordinated malware campaign" on the JetBrains Marketplace that has published no less than 15 malicious […]
- The Top 10 Attack Surface Exposures in 2026by info@thehackernews.com (The Hacker News)
Breaches don't always start with a zero-day. An exposed admin panel can get brute-forced, or credentials reused from a previous attack. But when a […]
- 144 Mastra npm Packages Compromised via Hijacked Contributor Accountby info@thehackernews.com (The Hacker News)
As many as 144 npm packages associated with the Mastra namespace ("@mastra/*"), a popular open-source JavaScript and TypeScript framework for […]
- CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Executionby info@thehackernews.com (The Hacker News)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a maximum-severity security flaw impacting Widget Factory Joomla […]
Graham Cluley Blog
- Maine forced to take down data breach portal after fake notices filed with authoritiesby Graham Cluley
The US state of Maine has taken its public data breach notification portal offline after someone submitted fraudulent breach disclosures […]
- Privacy own-goal: World Cup blunder leaks Lionel Messi’s passport detailsby Graham Cluley
Argentina's World Cup squad had their passport numbers leaked before a ball was kicked - not by hackers, but by someone who failed to redact a […]
- Silent Ransom Group: what you need to knowby Graham Cluley
Most extortion gangs hide behind a keyboard. Silent Ransom Group will phone your staff pretending to be IT support - and if that fails, send someone […]
- Smashing Security podcast #471: This AI worm just rewrote its own rulesby Graham Cluley
Researchers at the University of Toronto have built a worm that thinks for itself. Using free off-the-shelf AI models it works out how to break into […]
- Why schools remain one of cybercriminals’ favourite targetsby Graham Cluley
Schools on both sides of the Atlantic have been revealed in recent days to have been hit by hackers, reminding all of us that ransomware gangs see […]
- Got a LinkedIn message from a recruiter? It might be Chinese intelligence, warn FBI and MI5by Graham Cluley
If you've ever received an out-of-the-blue message via LinkedIn from a recruiter offering some well-paid consultancy work, intelligence agencies have […]
- Meta’s own AI chatbot to blame for Instagram accounts being stolen in secondsby Graham Cluley
Hackers have been hijacking Instagram accounts at scale by exploiting Meta's AI support chatbot. And, as if that weren't bad enough, the technique […]
- Smashing Security podcast #470: This AI security flaw might be impossible to fixby Graham Cluley
A website called "UK visa portal" has been quietly collecting passport scans, selfies, and personal data from thousands of travellers who thought […]
Infosecurity Magazine
- North Korean Hiring Fraud Runs on AI and US Laptop Farms
Nisos infiltrated a North Korean IT-worker fraud cell running on AI interviews and a US laptop farm
- Serverless Phishing Kit on GitHub Targets Mexican Banks
GitBait phishing kit abuses GitHub Pages and the SheetBest API to steal Mexican banking credentials
- Sensitive Enterprise Data Uploads to AI Models Double in a Year
The rise of AI-assistants and applications in the enterprise has seen a 93% increase in employees attempting to upload sensitive data, bringing […]
- AI Threats and Alert Fatigue Challenge Cybersecurity Teams
Filigran survey at Infosecurity Europe 2026 reveals AI-powered attacks as the top concern, with false positives, alert fatigue and manual processes […]
- EU Security Experts to Support Ukrainian Organizations in Case of Cyber-Attacks
Ukraine has been added to the EU Cybersecurity Reserve, which provides incident response services against large-scale incidents
- Fifteen JetBrains Marketplace Plugins Found Stealing API Keys
Aikido Security has discovered at least 15 IDE plugins on the JetBrains Marketplace
- Staffing Is Top SOC Challenge Even as AI Proliferates, Says SANS
SANS Institute study finds few SOCs have built AI into defined workflows, despite widespread adoption
- SprySOCKS Backdoor Expands From Linux to Windows
China-linked SprySOCKS backdoor gains stealthy Windows variants and 30-plus C2 commands
Dark Reading News
- INC Ransomware Thrives by Mastering the Basicsby Alexander Culafi
And one of those basics is focusing on sectors where a ransomware disruption creates immediate pressure to pay up, like with healthcare.
- Sweeping Credential-Harvesting Heist Compromises 30K+ Fortinet Devicesby Elizabeth Montalbano
Attackers are actively targeting various sectors across nearly 200 countries and already have compiled a list of working credentials for tens of […]
- UK Social Media Ban for Minors Has Privacy Experts Worriedby Robert Lemos
The UK will ban adolescents under 16 years old from user-to-user social media platforms, despite age verification issues and privacy concerns.
- Fileless Phantom Stealer Targets Browser Credentialsby Jai Vijayan
In addition to executing entirely in memory, the malware's infection chain incorporates other anti-analysis techniques designed to evade detection.
- Security Community Slams US Ban on Exporting Mythos, Fableby Alexander Culafi
An open letter signed by dozens of security experts asked the government to reverse export restrictions on Anthropic's Claude Fable 5 and Mythos 5 […]
- SprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detectionby Rob Wright
FishMonger, a China-nexus threat group, has deployed an undocumented version of the Linux backdoor against government targets in Honduras, Taiwan, […]
- Rokarolla Android Trojan Levels Up to Full Device Control, Persistenceby Elizabeth Montalbano
The emerging malware, spread via fake TikTok and Chrome downloads, has evolved by combining banking fraud with extensive device surveillance and […]
- 'Lorem Ipsum' Malware Pivots to ClickFix Deliveryby Jai Vijayan
New analysis shows the campaign, which uses compromised WordPress sites, may be linked to the ransomware and data extortion group Vice Society.