🚨 CISA adds 8 actively exploited vulnerabilities to its KEV catalog! Flaws in Cisco, PaperCut, & JetBrains products require urgent patching. Federal agencies are mandated to remediate, and all orgs are strongly urged to act now. #KEV #CyberSecurity...
A former FBI official is urging the U.S. government to designate ransomware groups that attack hospitals as TERRORIST organizations. The proposal could open the door to homicide charges if attacks lead to patient deaths. ⚖️ #Ransomware #Healthcare #...
✅ Semperis' Purple Knight tool now supports Microsoft GCC High environments! U.S. federal agencies & defense contractors can now use the free tool to assess their Entra ID security posture in the high-compliance cloud. 🛡️ #ActiveDirectory #EntraID ...
🇨🇳 APT UPDATE: Mustang Panda targets Indian banks & Korean policy experts in a new espionage campaign. The group uses spear-phishing & DLL sideloading to deploy the LotusLite backdoor for intelligence gathering. 🕵️ #APT #MustangPanda #CyberEspion...
Gentlemen RaaS is upgrading its toolkit, using the SystemBC botnet for covert SOCKS5 proxying. The combo enables stealthy C2 and payload delivery for attacks on Windows, Linux, and ESXi. 💣 #Ransomware #SystemBC #Gentlemen #CyberSecurity
🔥 Qilin ransomware deploys a sophisticated EDR killer, using a vulnerable signed driver (BYOVD) to disable over 300 security products at the kernel level. A major escalation in defense evasion tactics. #Ransomware #Qilin #EDR #CyberSecurity #BYOVD
Insurance giant Canada Life confirms a data breach by the ShinyHunters group, impacting 70,000 individuals. Attackers gained access via a compromised employee account. 🛡️ #DataBreach #ShinyHunters #CyberSecurity #Insurance
PATCH NOW: Progress Software fixes multiple command injection & WAF bypass flaws in MOVEit WAF and LoadMaster. Vulnerabilities (CVE-2026-3517, etc.) could lead to RCE. Update to the latest versions immediately! 🔒 #Vulnerability #PatchTuesday #MOVEit
🏥 Nearly 600,000 patients impacted by data breaches at three U.S. healthcare providers in IL & TX. Incidents involve network intrusions and email compromise, with one linked to the Insomnia ransomware group. #Healthcare #DataBreach #HIPAA
🚨 Ransomware Industrialized: Vect RaaS forms a strategic alliance with BreachForums & TeamPCP. The partnership weaponizes stolen credentials for large-scale attacks. Guesty & USHA already hit. A new era of scalable cybercrime. 🏭 #Ransomware #Vect ...
Hacking group ShinyHunters claims a massive breach of Amtrak, threatening to leak 9.4M records. 🚂 The group alleges access was gained via Amtrak's Salesforce systems, highlighting major third-party risk. #DataBreach #ShinyHunters #Amtrak
Critical 'NomShub' vulnerability in the Cursor AI coding editor could allow attackers to hijack a developer's machine just by opening a malicious repository. 💻 #Vulnerability #AI #DevSecOps #RCE
Two U.S. senior care providers, Windward Life Care & Legend Senior Living, disclose data breaches from ransomware attacks by Sinobi and Worldleaks gangs. Sensitive patient data was leaked. 🏥 #Ransomware #DataBreach #Healthcare
⚠️ Phishing Alert: Fake DHL 'shipment arrived' emails are dropping a malicious installer for the SimpleHelp RMM tool, giving attackers a backdoor into victim networks. Be cautious with attachments! 📦 #Phishing #Malware #SimpleHelp #RMM
Mozambique's Parliament approves new national cybersecurity and cybercrime laws, establishing a regulatory authority and mandating security measures for all organizations to combat rising cyber threats. 🇲🇿 #Cybersecurity #Law #Regulation #Mozambique
Cisco Talos uncovers 'PowMix,' a new botnet targeting the Czech Republic. Uses randomized C2 beaconing and embeds data in URL paths to evade detection. 🇨🇿 #Botnet #PowMix #Malware #ThreatIntel #CiscoTalos
New ransomware strain 'NBLOCK' discovered. Encrypts files with AES-256, adds '.NBLock' extension, and uses a Tor portal for ransom negotiations. 🔒 #Ransomware #NBLOCK #Malware #ThreatIntel
⚠️ Data Breach: Education giant McGraw Hill confirms 13.5M accounts exposed due to a Salesforce misconfiguration. ShinyHunters claims responsibility and has leaked the data. 📚 #DataBreach #McGrawHill #Salesforce #ShinyHunters
Ransomware market consolidation: Just 3 groups—Qilin, Akira, and DragonForce—were behind 40% of all attacks in March 2026, per Check Point. 📈 Qilin led the charge with 20% of incidents. #Ransomware #ThreatIntel #Qilin #Akira
🚨 CRITICAL FLAW: nginx-ui is being actively exploited via an auth bypass (CVE-2026-33032, CVSS 9.8). Unauthenticated attackers can gain full RCE. Patch to version 2.3.4+ immediately! #nginx #CyberSecurity #Vulnerability
Booking.com confirms a data breach where hackers accessed reservation details and personal info. ✈️ No financial data was exposed, but users should be on high alert for targeted phishing scams. PINs have been reset. #BookingCom #DataBreach #Phishing
Fortinet patches two critical (CVSS 9.1) flaws in FortiSandbox. 🚨 CVE-2026-39813 (auth bypass) & CVE-2026-39808 (RCE) can be exploited by an unauthenticated attacker. Patch immediately! #Fortinet #Vulnerability #CyberSecurity
RCI Hospitality Holdings discloses a data breach exposing contractor PII, including SSNs. ‼️ The breach was caused by an Insecure Direct Object Reference (IDOR) vulnerability on a web server. #DataBreach #IDOR #Vulnerability
Hacking group ShinyHunters claims a massive breach of Amtrak, threatening to leak 9.4M records. 🚂 The group alleges access was gained via Amtrak's Salesforce systems, highlighting major third-party risk. #DataBreach #ShinyHunters #Amtrak
Bank3 discloses data breach exposing customer SSNs & financial data. 🏦 The notice follows claims by the Qilin ransomware group to have stolen 149GB of data from the Tennessee bank. #DataBreach #Ransomware #Qilin #Finance
🚨 CRITICAL VULNERABILITY (CVSS 10.0) in Axios JS library! CVE-2026-40175 is an SSRF flaw that can lead to RCE and full cloud compromise. PoC is public. If you use Axios, update to v1.13.2 NOW! 🌐 #SupplyChain #RCE #SSRF
New campaign REF6598 targets finance & crypto pros using the Obsidian app! ⚠️ Attackers use malicious community plugins to deploy PHANTOMPULSE, a new RAT that uses the Ethereum blockchain for C2. ⛓️ #Malware #Obsidian #Crypto #CyberSecurity
🚗 Ransomware attack hits Autovista, a major automotive data firm. Services for vehicle valuation and analytics are disrupted across Europe & Australia. Investigation is ongoing. #Ransomware #Automotive #CyberAttack #DataBreach
Major shift for vulnerability management: NIST will no longer enrich all CVEs in the NVD due to overwhelming volume. 📢 Focus will be on critical & exploited flaws. Time to re-evaluate your VT processes! #NIST #NVD #CVE #CyberSecurity
📱 New Android RAT 'Mirax' infects 220k+ devices via Meta ads! The malware turns phones into SOCKS5 proxies and is sold as a private MaaS. Beware of sideloading apps from ads. #Android #Malware #CyberSecurity #Mirax