Category: Cyber News


  • Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware

    Cybersecurity researchers have discovered an ongoing campaign that’s targeting Indian users with a multi-stage backdoor as part of a suspected cyber espionage campaign. The activity, per the eSentire Threat Response Unit (TRU), involves using phishing emails impersonating the Income Tax Department of India to trick victims into downloading a malicious archive, ultimately granting the threat…

  • Who Operates the Badbox 2.0 Botnet?

    The cybercriminals in control of Kimwolf — a disruptive botnet that has infected more than 2 million devices — recently shared a screenshot indicating they’d compromised the control panel for Badbox 2.0, a vast China-based botnet powered by malicious software that comes pre-installed on many Android TV streaming boxes. Both the FBI and Google say…

  • DPRK’s Konni Targets Blockchain Developers With AI-Generated Backdoor

    The North Korean threat group is using a new PowerShell backdoor to compromise development environments and target cryptocurrency holdings, according to researchers. ​ ​ ​Read More

  • Multi-Stage Phishing Campaign Targets Russia with Amnesia RAT and Ransomware

    A new multi-stage phishing campaign has been observed targeting users in Russia with ransomware and a remote access trojan called Amnesia RAT. “The attack begins with social engineering lures delivered via business-themed documents crafted to appear routine and benign,” Fortinet FortiGuard Labs researcher Cara Lin said in a technical breakdown published this week. “These documents…

  • New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power Sector

    The Russian nation-state hacking group known as Sandworm has been attributed to what has been described as the “largest cyber attack” targeting Poland’s power system in the last week of December 2025. The attack was unsuccessful, the country’s energy minister, Milosz Motyka, said last week. “The command of the cyberspace forces has diagnosed in the…

  • Who Approved This Agent? Rethinking Access, Accountability, and Risk in the Age of AI Agents

    AI agents are accelerating how work gets done. They schedule meetings, access data, trigger workflows, write code, and take action in real time, pushing productivity beyond human speed across the enterprise. Then comes the moment every security team eventually hits: “Wait… who approved this?” Unlike users or applications, AI agents are often deployed quickly, shared…

  • CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog

    The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical security flaw affecting Broadcom VMware vCenter Server that was patched in June 2024 to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerability in question is CVE-2024-37079 (CVSS score: 9.8), which refers to a heap…

  • Swipe, Plug-in, Pwned: Researchers Find New Ways to Hack Vehicles

    Security researchers exploited dozens of vulnerabilities in vehicle infotainment systems and EV chargers during the latest Pwn2Own contest at Automotive World 2026. ​ ​ ​Read More

  • Exploited Zero-Day Flaw in Cisco UC Could Affect Millions

    Mass scanning is underway for CVE-2026-20045, which Cisco tagged as critical because successful exploitation could lead to a complete system takeover. ​ ​ ​Read More

  • Healthy Security Cultures Thrive on Risk Reporting

    The signs of an effective security culture are shifting as companies call on CISOs and security teams to raise their hands unabashedly. ​ ​ ​Read More