CYBERNEWSMEDIA Network:||
CYBERNEWSMEDIA
CYBERNEWSMEDIA

Cybersecurity News, Insights & Analysis

Latest
TrueConf Zero-Day Exploited in Asian Government Attacks
In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit by Ransomware
Critical ShareFile Flaws Lead to Unauthenticated RCE
Mobile Attack Surface Expands as Enterprises Lose Control
React2Shell Exploited in Large-Scale Credential Harvesting Campaign

Security Operations

80 материалов

  • Mobile Attack Surface Expands as Enterprises Lose Control

    Mobile & Wireless · Threat Intelligence

    Shadow AI embedded in everyday apps, combined with outdated mobile devices and zero-click exploits, is creating a new and largely unseen mobile risk. The post Mobile Attack Surface Expands as Enterprises Lose Control appeared first on SecurityWeek.

  • CISA Flags Critical PTC Vulnerability That Had German Police Mobilized

    Tracking & Law Enforcement · Incident Response

    Police in Germany physically warned organizations about the critical PTC Windchill vulnerability tracked as CVE-2026-4681. The post CISA Flags Critical PTC Vulnerability That Had German Police Mobilized appeared first on SecurityWeek.

  • 3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China

    Tracking & Law Enforcement · Artificial Intelligence

    The men violated U.S. export controls laws by scheming to divert massive quantities of the high-performance servers assembled in the United States to China. The post 3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China appeared first on SecurityWeek.

  • Iran Readied Cyberattack Capabilities for Response Prior to Epic Fury

    Threat Intelligence · Cyberwarfare

    Analysis reveals a six-month buildup of Iran-linked cyber infrastructure, including US-based shell companies, designed to weather kinetic strikes and ensure the resilience of its global hacking operations. The post Iran Readied Cyberattack Capabilities for Response Prior to Epic Fury appeared first on SecurityWeek.

  • The Collapse of Predictive Security in the Age of Machine-Speed Attacks

    Artificial Intelligence · Incident Response

    With exploitation of vulnerabilities taking just days, preemptive security must be the new model for defenders. The post The Collapse of Predictive Security in the Age of Machine-Speed Attacks appeared first on SecurityWeek.

  • AI, APIs and DDoS Collide in New Era of Coordinated Cyberattacks

    Network Security · Threat Intelligence

    Akamai warns that Layer 7 DDoS, API abuse and AI-powered attacks are merging into coordinated, multi-vector campaigns that are harder to detect and defend against. The post AI, APIs and DDoS Collide in New Era of Coordinated Cyberattacks appeared first on SecurityWeek.

  • Hacking Attempt Reported at Poland’s Nuclear Research Center

    Incident Response

    Initial evidence indicates Iran may be behind the attack, but officials admitted it could be a false flag. The post Hacking Attempt Reported at Poland’s Nuclear Research Center appeared first on SecurityWeek.

  • Authorities Disrupt SocksEscort Proxy Service Powered by AVrecon Botnet

    Tracking & Law Enforcement · Cybercrime

    Law enforcement agencies in the US and Europe targeted the cybercrime service that has impacted 360,000 devices since 2020. The post Authorities Disrupt SocksEscort Proxy Service Powered by AVrecon Botnet appeared first on SecurityWeek.

  • The Human IOC: Why Security Professionals Struggle with Social Vetting

    Threat Intelligence

    Applying SOC-level rigor to the rumors, politics, and 'human intel' can make or break a security team. The post The Human IOC: Why Security Professionals Struggle with Social Vetting appeared first on SecurityWeek.

  • FBI Investigating ‘Suspicious’ Cyber Activity on System Holding Sensitive Surveillance Information

    Data Breaches · Incident Response

    The bureau is working to determine the scope and impact of the problem, according to a notification sent to members of Congress. The post FBI Investigating ‘Suspicious’ Cyber Activity on System Holding Sensitive Surveillance Information appeared first on SecurityWeek.

  • LeakBase Cybercrime Forum Shut Down, Suspects Arrested

    Tracking & Law Enforcement · Cybercrime

    The stolen credential marketplace had been active since 2021 and in late 2025 it counted 142,000 users. The post LeakBase Cybercrime Forum Shut Down, Suspects Arrested appeared first on SecurityWeek.

  • Tycoon 2FA Phishing Platform Dismantled in Global Takedown

    Tracking & Law Enforcement · Cybercrime

    The phishing-as-a-service platform was used to send fraudulent emails to over 500,000 organizations every month. The post Tycoon 2FA Phishing Platform Dismantled in Global Takedown appeared first on SecurityWeek.

  • Chilean Carding Shop Operator Extradited to US

    Tracking & Law Enforcement · Cybercrime

    The 24-year-old suspect has been accused of trafficking over 26,000 cards from a single brand. The post Chilean Carding Shop Operator Extradited to US appeared first on SecurityWeek.

  • The Blast Radius Problem: Stolen Credentials Are Weaponizing Agentic AI

    Artificial Intelligence · Threat Intelligence

    More than half (56%) of the 400,000 vulnerabilities IBM X-Force tracked in 2025 required no authentication before exploitation. The post The Blast Radius Problem: Stolen Credentials Are Weaponizing Agentic AI appeared first on SecurityWeek.

  • Anonymous Fénix Members Arrested in Spain

    Tracking & Law Enforcement · Cybercrime

    The group’s administrator and moderator were arrested last year, and two other members were arrested this month. The post Anonymous Fénix Members Arrested in Spain appeared first on SecurityWeek.

  • FBI: $20 Million Losses Caused by 700 ATM Jackpotting Attacks in 2025

    Tracking & Law Enforcement · Cybercrime

    The FBI has confirmed that the Ploutus malware, which has been around for over a decade, is still being used in the wild. The post FBI: $20 Million Losses Caused by 700 ATM Jackpotting Attacks in 2025 appeared first on SecurityWeek.

  • Man Linked to Phobos Ransomware Arrested in Poland

    Tracking & Law Enforcement · Cybercrime

    Polish police said they found evidence of cybercrime on the 47-year-old suspect’s devices. The post Man Linked to Phobos Ransomware Arrested in Poland appeared first on SecurityWeek.

  • RSAC Releases Quantickle Open Source Threat Intelligence Visualization Tool

    Threat Intelligence

    Quantickle is a browser-based tool designed for creating visual representations of threat research. The post RSAC Releases Quantickle Open Source Threat Intelligence Visualization Tool appeared first on SecurityWeek.

  • Cyber Insights 2026: Threat Hunting in an Age of Automation and AI

    Artificial Intelligence · Threat Intelligence

    Understanding how threat hunting differs from reactive security provides a deeper understanding of the role, while hinting at how it will evolve in the future. The post Cyber Insights 2026: Threat Hunting in an Age of Automation and AI appeared first on SecurityWeek.

  • 2 Venezuelans Convicted in US for Using Malware to Hack ATMs

    Tracking & Law Enforcement · Cybercrime

    Dozens of Venezuelan nationals have been charged by the US for their role in ATM jackpotting attacks. The post 2 Venezuelans Convicted in US for Using Malware to Hack ATMs appeared first on SecurityWeek.

  • Asymmetric Security Emerges From Stealth With $4.2 Million in Funding

    Cybersecurity Funding · Incident Response

    The startup’s platform leverages AI to automate forensic investigations, accelerating incident response. The post Asymmetric Security Emerges From Stealth With $4.2 Million in Funding appeared first on SecurityWeek.

  • Jordanian Admits in US Court to Selling Access to 50 Enterprise Networks

    Tracking & Law Enforcement · Cybercrime

    Operating as an access broker, the defendant sold unauthorized access to compromised networks to an undercover agent. The post Jordanian Admits in US Court to Selling Access to 50 Enterprise Networks appeared first on SecurityWeek.

  • Cyber Insights 2026: Information Sharing

    Threat Intelligence

    Information sharing is necessary for efficient cybersecurity, and is widespread; but never quite perfect in practice. The post Cyber Insights 2026: Information Sharing appeared first on SecurityWeek.

  • Tennessee Man Pleads Guilty to Repeatedly Hacking Supreme Court’s Filing System

    Tracking & Law Enforcement · Cybercrime

    Nicholas Moore pleaded guilty to repeatedly hacking the U.S. Supreme Court’s filing system and illegally accessing computer systems belonging to AmeriCorps and the Department of Veterans Affairs. The post Tennessee Man Pleads Guilty to Repeatedly Hacking Supreme Court’s Filing System appeared first on SecurityWeek.

  • Investor Lawsuit Over CrowdStrike Outage Dismissed

    Incident Response

    A judge has ruled that the plaintiffs failed to demonstrate intent to defraud investors. The post Investor Lawsuit Over CrowdStrike Outage Dismissed appeared first on SecurityWeek.

  • RedVDS Cybercrime Service Disrupted by Microsoft and Law Enforcement

    Tracking & Law Enforcement · Cybercrime

    RedVDS enables threat actors to set up servers that can be used for phishing, BEC attacks, account takeover, and fraud. The post RedVDS Cybercrime Service Disrupted by Microsoft and Law Enforcement appeared first on SecurityWeek.

  • Dutch Port Hacker Sentenced to Prison

    Tracking & Law Enforcement

    The 44-year-old individual planted remote access malware on a logistics firm’s systems, with help from employees. The post Dutch Port Hacker Sentenced to Prison appeared first on SecurityWeek.

  • Two US Cybersecurity Pros Plead Guilty Over Ransomware Attacks

    Tracking & Law Enforcement · Ransomware

    Ryan Goldberg and Kevin Martin have admitted being affiliates of the BlackCat/Alphv ransomware group. The post Two US Cybersecurity Pros Plead Guilty Over Ransomware Attacks appeared first on SecurityWeek.

  • Feds Seize Password Database Used in Massive Bank Account Takeover Scheme

    Tracking & Law Enforcement · Cybercrime

    The cybercriminals attempted to steal $28 million from compromised bank accounts through phishing. The post Feds Seize Password Database Used in Massive Bank Account Takeover Scheme appeared first on SecurityWeek.

  • 574 Arrested, $3 Million Seized in Crackdown on African Cybercrime Rings

    Tracking & Law Enforcement · Cybercrime

    Authorities in Senegal, Ghana, Benin, and Cameroon dismantled BEC, ransomware, and other cyber-fraud networks. The post 574 Arrested, $3 Million Seized in Crackdown on African Cybercrime Rings appeared first on SecurityWeek.

  • US Shuts Down Crypto Exchange E-Note, Charges Russian Administrator

    Tracking & Law Enforcement · Cybercrime

    The exchange has been allegedly involved in laundering money for ransomware groups and other transnational cybercriminal organizations. The post US Shuts Down Crypto Exchange E-Note, Charges Russian Administrator appeared first on SecurityWeek.

  • Webinar Today: Inside the First 72 hours of a Cyber Event

    Incident Response

    Learn how GRC and SOC teams can turn shared threat intelligence into faster action, clearer communication, and stronger organizational resilience. The post Webinar Today: Inside the First 72 hours of a Cyber Event appeared first on SecurityWeek.

  • US Posts $10 Million Bounty for Iranian Hackers

    Tracking & Law Enforcement

    The US seeks information on the leader of Emennet Pasargad, Mohammad Bagher Shirinkar, and long-time employee Fatemeh Sedighian Kashi. The post US Posts $10 Million Bounty for Iranian Hackers appeared first on SecurityWeek.

  • In Other News: X Fined €120 Million, Array Flaw Exploited, New Iranian Backdoor

    Threat Intelligence

    Other noteworthy stories that might have slipped under the radar: Akamai patches HTTP smuggling vulnerability, Claude Skills used to execute ransomware, PickleScan flaws. The post In Other News: X Fined €120 Million, Array Flaw Exploited, New Iranian Backdoor appeared first on SecurityWeek.

  • Cloudflare Outage Caused by React2Shell Mitigations

    Incident Response

    The critical React vulnerability has been exploited in the wild by Chinese and other threat actors. The post Cloudflare Outage Caused by React2Shell Mitigations appeared first on SecurityWeek.

  • $29 Million Worth of Bitcoin Seized in Cryptomixer Takedown

    Tracking & Law Enforcement · Cybercrime

    Cryptomixer was targeted by law enforcement in Operation Olympia for facilitating cybercrime and money laundering. The post $29 Million Worth of Bitcoin Seized in Cryptomixer Takedown appeared first on SecurityWeek.

  • Russian Hackers Target US Engineering Firm Because of Work Done for Ukrainian Sister City

    Threat Intelligence

    The attack on the engineering firm was identified by Arctic Wolf in September before it could disrupt the engineering company’s operations or spread further. The post Russian Hackers Target US Engineering Firm Because of Work Done for Ukrainian Sister City appeared first on SecurityWeek.

  • Russian Hacking Suspect Wanted by the FBI Arrested on Thai Resort Island

    Tracking & Law Enforcement · Cybercrime

    Thailand’s Cyber Crime Investigation Bureau said an FBI tip that the “world-class hacker” was traveling to Thailand led to his arrest in Phuket. The post Russian Hacking Suspect Wanted by the FBI Arrested on Thai Resort Island appeared first on SecurityWeek.

  • Cloudflare Outage Not Caused by Cyberattack

    Incident Response

    Major online services such as ChatGPT, X, and Shopify were disrupted in a global Cloudflare outage on Nov. 18th, as well as transit and city services. The post Cloudflare Outage Not Caused by Cyberattack appeared first on SecurityWeek.

  • MI5 Warns Lawmakers That Chinese Spies Are Trying to Reach Them via LinkedIn

    Nation-State · Threat Intelligence

    Britain’s domestic intelligence agency warned that Chinese nationals were ”using LinkedIn profiles to conduct outreach at scale” on behalf of the Chinese Ministry of State Security. The post MI5 Warns Lawmakers That Chinese Spies Are Trying to Reach Them via LinkedIn appeared first on SecurityWeek.

  • 1,000+ Servers Hit in Law Enforcement Takedown of Rhadamanthys, VenomRAT, Elysium

    Tracking & Law Enforcement

    An individual believed to have been involved in the operation of VenomRAT was arrested recently in Greece. The post 1,000+ Servers Hit in Law Enforcement Takedown of Rhadamanthys, VenomRAT, Elysium appeared first on SecurityWeek.

  • How TTP-based Defenses Outperform Traditional IoC Hunting

    Ransomware · Incident Response

    Behavioral detection allows defenders to recognize activity patterns like privilege escalation, credential theft, and lateral movement—often ahead of encryption or data exfiltration. The post How TTP-based Defenses Outperform Traditional IoC Hunting appeared first on SecurityWeek.

  • 18 Arrested in Crackdown on Credit Card Fraud Rings

    Tracking & Law Enforcement · Fraud & Identity Theft

    Between 2016 and 2021, the suspects defrauded 4.3 million cardholders in 193 countries of €300 million (~$346 million). The post 18 Arrested in Crackdown on Credit Card Fraud Rings appeared first on SecurityWeek.

  • Ukrainian Man Extradited From Ireland to US Over Conti Ransomware Charges

    Tracking & Law Enforcement · Ransomware

    Oleksii Oleksiyovych Lytvynenko is now in the US after being held in custody in Ireland since 2023. The post Ukrainian Man Extradited From Ireland to US Over Conti Ransomware Charges appeared first on SecurityWeek.

  • Former US Defense Contractor Executive Admits to Selling Exploits to Russia

    Tracking & Law Enforcement

    Peter Williams stole trade secrets from his US employer and sold them to a Russian cybersecurity tools broker. The post Former US Defense Contractor Executive Admits to Selling Exploits to Russia appeared first on SecurityWeek.

  • Stragglers From Myanmar Scam Center Raided by Army Cross Into Thailand as Buildings are Blown Up

    Tracking & Law Enforcement · Cybercrime

    Witnesses on the Thai side of the border reported hearing explosions and seeing smoke coming from the center over the past several nights starting on Friday. The post Stragglers From Myanmar Scam Center Raided by Army Cross Into Thailand as Buildings are Blown Up appeared first on SecurityWeek.

  • Russian Government Now Actively Managing Cybercrime Groups: Security Firm

    Tracking & Law Enforcement · Cybercrime

    The relationship between the Russian government and cybercriminal groups has evolved from passive tolerance. The post Russian Government Now Actively Managing Cybercrime Groups: Security Firm appeared first on SecurityWeek.

  • Myanmar Military Shuts Down Major Cybercrime Center and Detains Over 2,000 People

    Tracking & Law Enforcement · Cybercrime

    Myanmar is notorious for hosting cyberscam operations responsible for bilking people all over the world. The post Myanmar Military Shuts Down Major Cybercrime Center and Detains Over 2,000 People appeared first on SecurityWeek.

  • South Korea Seeks to Arrest Dozens of Online Scam Suspects Repatriated From Cambodia

    Tracking & Law Enforcement · Cybercrime

    South Korea faces public calls to take stronger action to protect its nationals from being forced into overseas online scam centers. The post South Korea Seeks to Arrest Dozens of Online Scam Suspects Repatriated From Cambodia appeared first on SecurityWeek.

  • SIM Farm Dismantled in Europe, Seven Arrested

    Tracking & Law Enforcement · Fraud & Identity Theft

    The individuals ran a highly sophisticated cybercrime-as-a-service (CaaS) platform that caused roughly €5 million (~$5.8 million) in losses. The post SIM Farm Dismantled in Europe, Seven Arrested appeared first on SecurityWeek.

  • Microsoft: Russia, China Increasingly Using AI to Escalate Cyberattacks on the US

    Threat Intelligence

    The U.S. is the top target for cyberattacks, with criminals and foreign adversaries targeting companies, governments and organizations. The post Microsoft: Russia, China Increasingly Using AI to Escalate Cyberattacks on the US appeared first on SecurityWeek.

  • US Charges Cambodian Executive in Massive Crypto Scam and Seizes More Than $14 Billion in Bitcoin

    Tracking & Law Enforcement · Fraud & Identity Theft

    In an indictment, federal prosecutors charged Prince Holding Group chairman Chen Zhi with wire fraud conspiracy and money laundering conspiracy. The post US Charges Cambodian Executive in Massive Crypto Scam and Seizes More Than $14 Billion in Bitcoin appeared first on SecurityWeek.

  • Cyberattack on JLR Prompts £1.5 Billion UK Government Intervention

    Incident Response

    The government has announced a support package, but a cybersecurity expert has raised some concerns. The post Cyberattack on JLR Prompts £1.5 Billion UK Government Intervention appeared first on SecurityWeek.

  • Interpol Says 260 Suspects in Online Romance Scams Have Been Arrested in Africa

    Tracking & Law Enforcement · Cybercrime

    The operation took place in July and August and focused on scams in which perpetrators build online romantic relationships to extract money from targets or blackmail them with explicit images, Interpol said. The post Interpol Says 260 Suspects in Online Romance Scams Have Been Arrested in Africa appeared first on SecurityWeek.

  • Jaguar Land Rover Says Shutdown Will Continue Until at Least Oct 1 After Cyberattack

    Incident Response

    JLR extended the pause in production “to give clarity for the coming week as we build the timeline for the phased restart of our operations and continue our investigation.” The post Jaguar Land Rover Says Shutdown Will Continue Until at Least Oct 1 After Cyberattack appeared first on SecurityWeek.

  • Unit 221B Raises $5 Million for Threat Intel Aiding Hacker Arrests

    Threat Intelligence · Cybersecurity Funding

    The company will expand its platform’s capabilities and accelerate investigative collaboration and go-to-market efforts. The post Unit 221B Raises $5 Million for Threat Intel Aiding Hacker Arrests appeared first on SecurityWeek.

  • Scattered Spider Suspect Arrested in US

    Tracking & Law Enforcement · Cybercrime

    The juvenile suspect surrendered on September 17 and was booked on computer intrusion, extortion, and identity theft charges. The post Scattered Spider Suspect Arrested in US appeared first on SecurityWeek.

  • HoundBytes Launches Automated Security Analyst

    Incident Response

    The Romania-based company has launched WorkHorse and is preparing for a funding round to accelerate growth. The post HoundBytes Launches Automated Security Analyst appeared first on SecurityWeek.

  • FBI Warns of Spoofed IC3 Website

    Tracking & Law Enforcement · Cybercrime

    Threat actors likely spoofed the official government website for personal information theft and monetary fraudulent activity. The post FBI Warns of Spoofed IC3 Website appeared first on SecurityWeek.

  • Airport Cyberattack Disrupts More Flights Across Europe

    Incident Response · Cybercrime

    The cyberattack affected software of Collins Aerospace, whose systems help passengers check in, print boarding passes and bag tags, and dispatch their luggage. The post Airport Cyberattack Disrupts More Flights Across Europe appeared first on SecurityWeek.

  • Cyberattack Disrupts Check-In Systems at Major European Airports

    Incident Response · Cybercrime

    The disruptions to airport electronic systems meant that only manual check-in and boarding was possible. The post Cyberattack Disrupts Check-In Systems at Major European Airports appeared first on SecurityWeek.

  • Two Scattered Spider Suspects Arrested in UK; One Charged in US

    Tracking & Law Enforcement · Cybercrime

    Thalha Jubair and Owen Flowers were charged in the UK and the US with hacking critical infrastructure organizations. The post Two Scattered Spider Suspects Arrested in UK; One Charged in US appeared first on SecurityWeek.

  • Silent Push Raises $10 Million for Threat Intelligence Platform

    Threat Intelligence · Cybersecurity Funding

    Silent Push, which provides Indicators of Future Attack, has raised a total of $32 million in funding. The post Silent Push Raises $10 Million for Threat Intelligence Platform appeared first on SecurityWeek.

  • Jaguar Land Rover Operations ‘Severely Disrupted’ by Cyberattack

    Incident Response

    The automotive company said it disconnected its systems, which severely impacted both retail and manufacturing operations. The post Jaguar Land Rover Operations ‘Severely Disrupted’ by Cyberattack appeared first on SecurityWeek.

  • Security Firms Hit by Salesforce–Salesloft Drift Breach

    Incident Response · Data Breaches

    Hackers accessed customer contact information and case data from Salesforce instances at Cloudflare, Palo Alto Networks, and Zscaler. The post Security Firms Hit by Salesforce–Salesloft Drift Breach appeared first on SecurityWeek.

  • VerifTools Fake ID Operation Dismantled by Law Enforcement

    Tracking & Law Enforcement · Cybercrime

    Authorities say VerifTools sold fake driver’s licenses and passports worldwide, enabling fraudsters to bypass KYC checks and access online accounts. The post VerifTools Fake ID Operation Dismantled by Law Enforcement appeared first on SecurityWeek.

  • China’s Salt Typhoon Hacked Critical Infrastructure Globally for Years

    Threat Intelligence · Cyberwarfare

    China-linked APT ‘Salt Typhoon’ exploited known router flaws to maintain persistent access across telecom, government, and military networks, giving Beijing’s intelligence services global surveillance reach. The post China’s Salt Typhoon Hacked Critical Infrastructure Globally for Years appeared first on SecurityWeek.

  • Large Interpol Cybercrime Crackdown in Africa Leads to the Arrest of Over 1,200 Suspects

    Tracking & Law Enforcement · Cybercrime

    Dubbed Operation Serengeti 2.0, the operation took place between June and August. The post Large Interpol Cybercrime Crackdown in Africa Leads to the Arrest of Over 1,200 Suspects appeared first on SecurityWeek.

  • Scattered Spider Hacker Sentenced to Prison

    Tracking & Law Enforcement · Cybercrime

    Noah Urban was sentenced to 10 years in prison for his role in the notorious cybercriminal operation known as Scattered Spider. The post Scattered Spider Hacker Sentenced to Prison appeared first on SecurityWeek.

  • RapperBot Botnet Disrupted, American Administrator Indicted

    Tracking & Law Enforcement · Cybercrime

    The US Department of Justice has announced the takedown of the RapperBot botnet and charges against its American administrator. The post RapperBot Botnet Disrupted, American Administrator Indicted appeared first on SecurityWeek.

  • Hacktivist Sentenced to 20 Months of Prison in UK

    Cybercrime · Tracking & Law Enforcement

    Al-Tahery Al-Mashriky of the Yemen Cyber Army has been accused of hacking into and defacing many websites as part of hacktivist campaigns. The post Hacktivist Sentenced to 20 Months of Prison in UK appeared first on SecurityWeek.

  • PLoB: A Behavioral Fingerprinting Framework to Hunt for Malicious Logins

    Identity & Access · Incident Response

    Splunk researchers developed a system to fingerprint post-logon behavior, using AI to find subtle signals of intrusion. The post PLoB: A Behavioral Fingerprinting Framework to Hunt for Malicious Logins appeared first on SecurityWeek.

  • Open Source CISA Tool Helps Defenders With Hacker Containment, Eviction

    Incident Response

    The tool includes resources to help organizations during the containment and eviction stages of incident response. The post Open Source CISA Tool Helps Defenders With Hacker Containment, Eviction appeared first on SecurityWeek.

  • BlackSuit Ransomware Group Transitioning to ‘Chaos’ Amid Leak Site Seizure

    Ransomware · Tracking & Law Enforcement

    The emerging Chaos ransomware appears to be a rebranding of BlackSuit, which had its leak site seized by law enforcement. The post BlackSuit Ransomware Group Transitioning to ‘Chaos’ Amid Leak Site Seizure appeared first on SecurityWeek.

  • US Targets North Korea’s Illicit Funds: $15M Rewards Offered as American Woman Jailed in IT Worker Scam

    Tracking & Law Enforcement

    Christina Chapman was sentenced to prison for helping North Korean IT workers infiltrate US companies and running a laptop farm for them. The post US Targets North Korea’s Illicit Funds: $15M Rewards Offered as American Woman Jailed in IT Worker Scam appeared first on SecurityWeek.

  • Clorox Sues Cognizant for $380 Million Over 2023 Hack

    Incident Response

    Clorox is blaming Congnizat for the 2023 cyberattack, claiming that the IT provided handed over passwords to the hackers. The post Clorox Sues Cognizant for $380 Million Over 2023 Hack appeared first on SecurityWeek.

  • France Says Administrator of Cybercrime Forum XSS Arrested in Ukraine

    Cybercrime · Tracking & Law Enforcement

    French authorities announced that an alleged admin of XSS.is, one of the longest-running cybercrime forums, has been arrested in Ukraine. The post France Says Administrator of Cybercrime Forum XSS Arrested in Ukraine appeared first on SecurityWeek.

  • SharePoint Under Attack: Microsoft Warns of Zero-Day Exploited in the Wild – No Patch Available

    Threat Intelligence · Vulnerabilities

    Enterprises running SharePoint servers should not wait for a fix for CVE-2025-53770 and should commence threat hunting to search for compromise immediately. The post SharePoint Under Attack: Microsoft Warns of Zero-Day Exploited in the Wild – No Patch Available appeared first on SecurityWeek.

  • Mobile Forensics Tool Used by Chinese Law Enforcement Dissected

    Mobile & Wireless · Tracking & Law Enforcement

    Deployed on mobile devices confiscated by Chinese law enforcement, Massistant can collect user information, files, and location. The post Mobile Forensics Tool Used by Chinese Law Enforcement Dissected appeared first on SecurityWeek.

  • United Natural Foods Projects Up to $400M Sales Hit From June Cyberattack

    Cyber Insurance · Incident Response

    Cyberattack disrupted UNFI’s operations in June; company estimates $50–$60 million net income hit but anticipates insurance will cover most losses. The post United Natural Foods Projects Up to $400M Sales Hit From June Cyberattack appeared first on SecurityWeek.