Cybercriminals are abandoning encryption-based ransomware in favor of pure extortion tactics that rely solely on data theft and threats of public disclosure. This shift eliminates the need for decryption negotiations, reduces technical complexity, and circumvents backup recovery strategies. Organiza
Italian authorities have shut down CINEMAGOAL, a sophisticated piracy application that masqueraded as a free streaming service while covertly harvesting authentication credentials from 1.4 million users. The operation, coordinated by Italy’s Guardia di Finanza and Postal Police, dismantled infrastru
Claude Mythos, an advanced AI-powered vulnerability scanner, has identified over 10,000 high-severity security flaws across widely deployed software systems in just 30 days. This unprecedented discovery rate represents a 40x increase compared to traditional manual code review methods and raises crit
A critical memory corruption vulnerability dubbed “Nginx-poolslip” has been discovered in Nginx web server software, potentially affecting millions of servers worldwide. The flaw enables attackers to trigger denial-of-service conditions and execute arbitrary code remotely. Organizations running vuln
The RondoDox botnet is actively exploiting CVE-2018-5999, a six-year-old critical vulnerability in ASUS routers, to compromise devices and expand its network. This authentication bypass flaw allows attackers to execute arbitrary commands remotely, converting vulnerable routers into botnet nodes for
Three critical vulnerabilities—Dirty Frag (CVE-2024-56678), Copy Fail (CVE-2024-56677), and Fragnesia (CVE-2024-56676)—expose fundamental weaknesses in Linux kernel memory management. These flaws affect packet fragmentation and copy-on-write mechanisms, potentially allowing local attackers to escala
The Ghostwriter APT group has resurfaced with a sophisticated social engineering campaign targeting Ukrainian government institutions. Attackers are leveraging compromised credentials and spoofed communications mimicking the legitimate “Vseosvita” learning platform to distribute malicious payloads.
Dutch authorities have seized approximately 800 servers from a hosting provider that allegedly facilitated widespread cybercriminal activities. The operation targeted a bulletproof hosting service that enabled attackers to launch DDoS attacks, distribute malware, and conduct phishing campaigns while
Threat actors are exploiting F5 BIG-IP appliances as entry points to compromise enterprise Linux networks. Attackers gain initial access through vulnerable BIG-IP devices, establish SSH backdoors, and pivot laterally into connected Linux infrastructure. Organizations using F5 BIG-IP in their network
A critical privilege escalation vulnerability (CVE-2026-48172) in the LiteSpeed cPanel plugin allows authenticated attackers to execute arbitrary scripts with root privileges. The flaw affects LiteSpeed Web Server installations using the cPanel integration plugin and is actively being exploited in t