Security
ShinyHunters tease Coinbase by flashing allegedly stolen data on Telegram
Infamous for their audacity, hackers from the threat actor known as ShinyHunters are not only escalating their operations but also flashing alleged data from Coinbase, a major crypto exchange, which disclosed the breach in May last year.
Read more about ShinyHunters tease Coinbase by flashing allegedly stolen data on Telegram
Microsoft Windows moves to disable NTLM, a common attack vector for hackers
After decades on life support, Microsoft is finally flipping the kill switch for NTLM (New Technology LAN Manager), a built-in authentication system. Hackers favor NTLM for its weak security and vulnerability to relay attacks.
Read more about Microsoft Windows moves to disable NTLM, a common attack vector for hackers
Hackers share chip photos allegedly stolen from HP subsidiary, Poly
Telecommunications giant Poly was posted on a dark web forum, which attackers use to showcase their latest victims. HP says it's investigating attacker claims.
Read more about Hackers share chip photos allegedly stolen from HP subsidiary, Poly
Notepad++ hit by Chinese state-sponsored group, injecting malware into updates
For months, hackers abused hijacked Notepad++ update infrastructure to infect selected users with malicious packages. The investigation reveals a massive hosting-level compromise and likely Chinese state-sponsored group involvement.
Read more about Notepad++ hit by Chinese state-sponsored group, injecting malware into updates
Hackers who hit OkCupid, Bumble, and Crunchbase bypass security with a simple trick: a phone call
A hail of major recent cyberattacks have one thing in common – hackers call employees to ask for access. Google alerts about “a significant expansion and escalation in the operations” of ShinyHunters.
Read more about Hackers who hit OkCupid, Bumble, and Crunchbase bypass security with a simple trick: a phone call
Epstein allegedly had a “personal hacker,” was into cyberwar and malware
Financier, child sex offender, serial rapist, human trafficker – Jeffrey Epstein had many faces. Now, a new batch of files suggests he was interested in hacking and malware, and might even have had a personal hacker.
Read more about Epstein allegedly had a “personal hacker,” was into cyberwar and malware
Hackers claim 1.4 TB theft from Iron Mountain, major data management company
A Russia-linked attacker group says they accessed a huge database of the S&P 500 company, allegedly accessing company and client data. The attached data sample provides some insight into the claimed data breach.
Read more about Hackers claim 1.4 TB theft from Iron Mountain, major data management company
Hugging Face platform abused to spread Android malware variants
Hugging Face is considered a trusted platform unlikely to trigger security warnings but a new Android malware campaign is using it as a repository for thousands of variations of an APK payload that collects sensitive credentials.
Read more about Hugging Face platform abused to spread Android malware variants
Github’s viral AI assistant Moltbot is a step away from a massive breach
Moltbot AI became viral overnight, but researchers warn that the “vibe-coded” tool might be leaking your credentials.
Read more about Github’s viral AI assistant Moltbot is a step away from a massive breach
Framework to host AI locally on Windows and macOS leaks massive amount of data
Shadow AI is spreading across the internet, and no one is really watching. Security researchers have discovered over 170,000 publicly accessible and unmonitored AI systems.
Read more about Framework to host AI locally on Windows and macOS leaks massive amount of data
Cyberattacks hit record high in Hong Kong as AI fuels phishing schemes
Hong Kong saw a record number of cyberattacks in 2025, with the total volume of digital incidents reaching an all-time high. Authorities warn that increasingly sophisticated tactics, including the use of AI, are making attacks harder to detect and defend against.
Read more about Cyberattacks hit record high in Hong Kong as AI fuels phishing schemes
EU facing unprecedented attacks, needs to rethink cybersec – bloc cyber chief
The European Union, already under constant pressure from US President Donald Trump-friendly big tech companies, also faces an unprecedented volume and pace of cyberattacks. This is extremely risky, the bloc’s cyber chief says.
Read more about EU facing unprecedented attacks, needs to rethink cybersec – bloc cyber chief
Belgian hospitals unable to pay employees due to ransomware attack
Two Belgian hospitals can’t pay 1,200 of their staff members because of a recent ransomware attack. Instead, they have to manage with a partial advance payment.
Read more about Belgian hospitals unable to pay employees due to ransomware attack
Personal data of nearly 37m job seekers exposed in France Travail breach
The French DPA has sanctioned France Travail, an unemployment agency, with a €5 million fine for compromising the personal data of more than 36.8 million people seeking work.
Read more about Personal data of nearly 37m job seekers exposed in France Travail breach
Google shuts down massive proxy botnet hijacking home internet
Google’s Threat Intelligence Group (GTIG) dismantles key infrastructure behind one of the world’s largest residential proxy operations – exposing a shadowy ecosystem that turns everyday consumer devices into tools for cybercrime and espionage.
Read more about Google shuts down massive proxy botnet hijacking home internet
Warning: cybercriminals are hijacking open-source AI for scams and disinformation
Hackers and other criminals can easily commandeer computers operating open-source large language models outside the guardrails and constraints of the major artificial-intelligence platforms, creating security risks and vulnerabilities, researchers said on Thursday.
Read more about Warning: cybercriminals are hijacking open-source AI for scams and disinformation
Bumble Hives group data found in ShinyHunters leak, researchers warn
The attacker group ShinyHunters has added the popular dating app Bumble to its latest victims, claiming that most of the data was taken from cloud services the company uses. The leaked data incudes list of Bumble groups, called Hives.
Read more about Bumble Hives group data found in ShinyHunters leak, researchers warn
Google fixes high-severity Chrome bug that may abuse background downloads
Google has released a new Chrome Stable Channel update to fix a high-severity vulnerability in the browser’s Background Fetch API, urging users to update as soon as possible to reduce potential security and privacy risks.
Read more about Google fixes high-severity Chrome bug that may abuse background downloads
500M+ Facebook records ‘cleaned’ by attackers: Why the 2019 leak is still dangerous?
Malicious actors are claiming that they’ve structured and cleaned data stolen during a 2019 Facebook data scrape. The Cybernews research team notes that old data remains useful to cybercriminals, as personal information doesn’t expire.
Read more about 500M+ Facebook records ‘cleaned’ by attackers: Why the 2019 leak is still dangerous?
Russian gang tied to recent massive cyberattack on Poland’s power grid
The massive cyberattack that nearly knocked out Poland’s power grid in late December has been attributed to a Russian state-sponsored hacking collective known as Electrum.
Read more about Russian gang tied to recent massive cyberattack on Poland’s power grid
