In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum 2026-06-19 at 18:23 By SecurityWeek News Other noteworthy stories that might have slipped under the radar: Android TV botnet Popa linked to Israeli firm, Velvet Ant maintained decade-long stealth, unpatched GCP Config Connector flaw enables takeover. The post In Other […]
CryptoBandits Malware Doubles as a Backdoor, Abuses Tor 2026-06-19 at 14:19 By Ionut Arghire CryptoBandits uses a local SOCKS5 proxy for traffic routing, blending data theft with remote code execution. The post CryptoBandits Malware Doubles as a Backdoor, Abuses Tor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
CryptoBandits Malware Doubles as a Backdoor, Abuses Tor Read More »
FortiBleed: 86,000 Fortinet Device Credentials Compromised 2026-06-19 at 13:48 By Ionut Arghire The large-scale credential theft campaign hit roughly half of the internet-accessible Fortinet firewalls and VPNs. The post FortiBleed: 86,000 Fortinet Device Credentials Compromised appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
FortiBleed: 86,000 Fortinet Device Credentials Compromised Read More »
15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown 2026-06-19 at 09:46 By Ionut Arghire Law enforcement and private partners took down 106 SocGholish C&C servers and domains as part of Operation Endgame. The post 15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown Read More »
Rokarolla Banking Trojan Targets 200 Applications 2026-06-18 at 13:42 By Eduard Kovacs The Android malware allows its operators to take control of infected devices and harvest sensitive information. The post Rokarolla Banking Trojan Targets 200 Applications appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Rokarolla Banking Trojan Targets 200 Applications Read More »
Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack 2026-06-17 at 13:38 By Ionut Arghire The attackers deployed a new Go-based backdoor that uses Microsoft Teams servers for command-and-control. The post Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack Read More »
Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages 2026-06-16 at 13:51 By Ionut Arghire Arch Linux suspended account registrations in response to the wave of malicious packages being uploaded to AUR. The post Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages Read More »
OnyxC2 Stealer Offers Cybercriminals Enterprise-Grade Theft for $250 a Month 2026-06-11 at 16:00 By Kevin Townsend Researchers say the OnyxC2 malware targets more than 200 applications and extensions while evading detection through encrypted payloads, DLL sideloading, and in-memory execution techniques. The post OnyxC2 Stealer Offers Cybercriminals Enterprise-Grade Theft for $250 a Month appeared first on
OnyxC2 Stealer Offers Cybercriminals Enterprise-Grade Theft for $250 a Month Read More »
Infostealers Turn Millions of Devices Into Credential Theft Machines 2026-06-10 at 17:24 By Kevin Townsend As attackers increasingly favor stolen credentials over exploits, infostealers have become a primary source of access for ransomware and other cybercrime operations. The post Infostealers Turn Millions of Devices Into Credential Theft Machines appeared first on SecurityWeek. This article is
Infostealers Turn Millions of Devices Into Credential Theft Machines Read More »
Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks 2026-06-09 at 15:21 By Ionut Arghire The most recent variants of the self-propagating attacks are named Miasma and Hades. The post Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks appeared first on SecurityWeek. This article is an excerpt from
Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks Read More »
Chinese Cybercrime Group in Spotlight for Record Campaign Pace 2026-06-04 at 16:06 By Ionut Arghire Relying on social engineering, the hacking group engages in credential phishing, malware distribution, and fraud activities. The post Chinese Cybercrime Group in Spotlight for Record Campaign Pace appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
Chinese Cybercrime Group in Spotlight for Record Campaign Pace Read More »
Hackers Target Global Stock Exchange in Espionage Operation 2026-06-03 at 20:19 By Eduard Kovacs The attackers had access to a senior executive’s email account for 150 days and exfiltrated data for months. The post Hackers Target Global Stock Exchange in Espionage Operation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
Hackers Target Global Stock Exchange in Espionage Operation Read More »
In Other News: Trump Mobile Data Breach, FIFA World Cup Phishing, CISA Responds to Supply Chain Attacks 2026-05-29 at 21:23 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Trump Mobile exposes customer data, phishers target the 2026 FIFA World Cup, CISA responds to recent supply chain attacks. The post In Other
Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks 2026-05-29 at 06:17 By Kevin Townsend Researchers warn GreyVibe’s extensive use of ChatGPT, Gemini, and other AI tools offers a glimpse into how future cybercriminal and state-aligned groups will operate. The post Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks appeared first on SecurityWeek. This article is
Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks Read More »
New BTMOB Android Malware Enables Full Device Takeover 2026-05-28 at 16:05 By Ionut Arghire Delivered via phishing lures, the malware combines financial theft with data exfiltration and remote access. The post New BTMOB Android Malware Enables Full Device Takeover appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
New BTMOB Android Malware Enables Full Device Takeover Read More »
Iranian APT Targets Aviation, Software Companies With Updated Tools 2026-05-26 at 17:32 By Ionut Arghire Nimbus Manticore has continued its operations during and after the US military campaign against Iran. The post Iranian APT Targets Aviation, Software Companies With Updated Tools appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Iranian APT Targets Aviation, Software Companies With Updated Tools Read More »
Watch on Demand: Threat Detection & Incident Response Summit – All Sessions Available 2026-05-26 at 14:02 By SecurityWeek News Register to enjoy free access and explore the tools, strategies, and frameworks needed to build a resilient security program for a world where every minute counts. The post Watch on Demand: Threat Detection & Incident Response
Watch on Demand: Threat Detection & Incident Response Summit – All Sessions Available Read More »
In Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking 2026-05-22 at 17:28 By SecurityWeek News Other noteworthy stories that might have slipped under the radar: CISA contractor exposes credentials, Mythos testing and new features, Huawei router flaw triggered telecom blackout. The post In Other News: Industrial Router Exploitation, CISA KEV Nomination
Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack 2026-05-20 at 14:21 By Ionut Arghire A compromised maintainer account was used to publish malicious package versions across the @antv namespace. The post Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack appeared first on SecurityWeek. This article is an
Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack Read More »
Virtual Event Today: Threat Detection & Incident Response Summit 2026-05-20 at 13:02 By SecurityWeek News The speed and sophistication of cyberattacks have outpaced traditional defense methods. Please join us online today from 11AM -4PM ET for the Threat Detection & Incident Response Summit. Don’t miss this virtual event as we explore how to cut through alert
Virtual Event Today: Threat Detection & Incident Response Summit Read More »