Quiet today .

affectedBroken VECT 2.0 ransomware acts as a data wiper for large filessocialX 69% · Reddit 0% · GitHub 31%

Broken VECT 2.0 ransomware acts as a data wiper for large files

Researchers are warning that the VECT 2.0 ransomware has a problem in the way it handles encryption nonces that leads to permanently destroying larger files rather than encrypt them.

affectedFinland earlier this month faces federal charges in the UsocialX 64% · Reddit 0% · GitHub 36%

US reportedly charges Scattered Spider hacker arrested in Finland

A 19-year-old dual United States and Estonian citizen arrested in Finland earlier this month faces federal charges in the U.S. alleging he was a prolific member of the notorious Scattered Spider hacking collective.

affectedVECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXisocialX 80% · Reddit 0% · GitHub 20%

VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXi

Zscaler ThreatLabz 2026 VPN Risk Report with Cybersecurity Insiders. AI collapsed human response window and turned remote access into fastest path to breach.

affectedInside an OPSEC PlaybooksocialX 58% · Reddit 0% · GitHub 42%

Inside an OPSEC Playbook: How Threat Actors Evade Detection

When cybercrime operations are disrupted, the cause is typically not due to sophisticated detection, but rather basic operational mistakes such as identity reuse, weak infrastructure separation, or overlooked metadata.

affectedby the incidentsocialX 50% · Reddit 0% · GitHub 50%

Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak

The ShinyHunters cybercrime group claimed to have stolen 9 million records containing personal information from Medtronic.

Apr 273d ago

affectedMalicious AI Prompt Injection Attacks Increasing, but Sophistication Still Lowsocial0 · flat

Malicious AI Prompt Injection Attacks Increasing, but Sophistication Still Low: Google

The tech giant found that many indirect prompt injection attempts are harmless, but some malicious exploits have also been identified.

Apr 273d ago

affected100 countriessocial0 · flat

Energy and Water Management Firm Itron Hacked

Itron, which serves utilities and cities around the world, discovered unauthorized access to its systems on April 13.

Apr 273d ago

affectedPrivate Browsing modesocial0 · flat

Firefox Vulnerability Allows Tor User Fingerprinting

The vulnerability is tracked as CVE-2026-6770 and it has been patched with the release of Firefox 150 and Tor 15.0.10.

Apr 264d ago

affectedAmerican utility firm Itron discloses breach of internal IT networksocial0 · flat

American utility firm Itron discloses breach of internal IT network

Utility technology company Itron, Inc. has disclosed that an unauthorized third party accessed some of its internal systems during a cyberattack.

Apr 255d ago

affectedThreat actor uses Microsoft Teams to deploy new “Snow” malwaresocial0 · flat

Threat actor uses Microsoft Teams to deploy new “Snow” malware

A threat group tracked as UNC6692 uses social engineering to deploy a new, custom malware suite named “Snow,” which includes a browser extension, a tunneler, and a backdoor.

Apr 246d ago

affectedNew BlackFile extortion group linked to surge of vishing attackssocial0 · flat

New BlackFile extortion group linked to surge of vishing attacks

A new financially motivated hacking group tracked as BlackFile has been linked to a wave of data theft and extortion attacks against retail and hospitality organizations since February 2026.

Apr 237d ago

affectedTrigona ransomware attacks use custom exfiltration tool to steal datasocial0 · flat

Trigona ransomware attacks use custom exfiltration tool to steal data

Recently observed Trigona ransomware attacks are using a custom, command-line tool to steal data from compromised environments faster and more efficiently.

affectedNew Mirai campaign exploits RCE flaw in EoL D-Link routerssocial0 · flat

New Mirai campaign exploits RCE flaw in EoL D-Link routers

A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability affecting D-Link DIR-823X routers, to enlist devices into the botnet.

affectedKyber ransomware gang toys with post-quantum encryption on Windowssocial0 · flat

Kyber ransomware gang toys with post-quantum encryption on Windows

A new Kyber ransomware operation is targeting Windows systems and VMware ESXi endpoints in recent attacks, with one variant implementing Kyber1024 post-quantum encryption.

affecteddismantles major $4social0 · flat

Spain dismantles major $4.7M manga piracy platform, arrests four

The Spanish police have dismantled what they claim is the largest Spanish-language manga piracy platform, operating since 2014 and serving millions of monthly users worldwide.

affectedInside Caller-as-a-Service Fraudsocial0 · flat

Inside Caller-as-a-Service Fraud: The Scam Economy Has a Hiring Process

Fraudulent phone calls have become a daily reality for millions of people worldwide.

affectedNew GoGra malware for Linux uses Microsoft Graph API for commssocial0 · flat

New GoGra malware for Linux uses Microsoft Graph API for comms

A Linux variant of the GoGra backdoor uses legitimate Microsoft infrastructure, relying on an Outlook inbox for stealthy payload delivery.

Apr 219d ago

affectedattacks against energy and utilities organizations in Venezuelasocial0 · flat

New Lotus data wiper used against Venezuelan energy, utility firms

A previously undocumented data-wiping malware dubbed Lotus was used last year in targeted attacks against energy and utilities organizations in Venezuela.

Apr 219d ago

affected‘Scattered Spider’ Member ‘Tylerb’ Pleads Guiltysocial0 · flat

‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty

A 24-year-old British national and senior member of the cybercrime group “ Scattered Spider ” has pleaded guilty to wire fraud conspiracy and aggravated identity theft.

Apr 219d ago

affectedBlackCat (ALPHV) ransomware attacks in 2023social0 · flat

Former ransomware negotiator pleads guilty to BlackCat attacks

41-year-old Angelo Martino, a former employee of cybersecurity incident response company DigitalMint, has pleaded guilty to targeting U.S. companies in BlackCat (ALPHV) ransomware attacks in 2023.

Apr 2010d ago