Basic-Fit has reported that hackers have stolen names, dates of birth, and even bank account details. The post Europe’s Largest Gym Chain Says Data Breach Impacts 1 Million Members appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
‘Mythos-Ready’ Security: CSA Urges CISOs to Prepare for Accelerated AI Threats
CISOs face a shrinking window to prepare as AI models like Mythos collapse the gap between vulnerability discovery and exploitation, driving a new era of high-velocity cyberattacks. The post ‘Mythos-Ready’ Security: CSA Urges CISOs to Prepare for Accelerated AI Threats…
Pavel Durov Says Russia VPN Restrictions Triggered Banking Disruption
In spite of the fact that the Russian government is intensifying its efforts to reaffirm its control over digital communication channels, unintended consequences of that strategy are becoming evident in a number of critical sectors beyond social media. Significant disruptions…
JanelaRAT Malware Attacks Banks in Brazil and Mexico, Steals Data
Banks in Latin American countries such as Mexico and Brazil have been victims of continuous malware attacks by a strain called JanelaRAT. An upgraded variant of BX RAT, JanelaRAT, can steal cryptocurrency and financial data from financial organizations, trace mouse…
Basic-Fit hack compromises data of up to 1 million members
Basic-Fit, a European gym chain, disclosed that hackers breached one of its internal systems, exposing members’ personal data in several countries. The company operates more than 2,150 clubs in 12 countries under two brands, with more than 5.8 million members.…
DavMail 6.6.0 patches a regex flaw and advances its Microsoft Graph backend
Organizations that run DavMail to bridge standard mail clients to Microsoft Exchange or Office 365 received an update this week. Version 6.6.0 addresses a code-scanning alert tied to a regex vulnerability, adjusts OAuth redirect handling to match a recent Microsoft…
FIFA World Cup 2026 Partners Expose Email Fraud Risk
A recent study by cybersecurity firm Proofpoint highlights a significant vulnerability among the partners and sponsors of the FIFA World Cup 2026. This article has been indexed from CyberMaterial Read the original article: FIFA World Cup 2026 Partners Expose Email…
Triad Nexus Evades Sanctions
Triad Nexus, a significant player in the cybercrime world, has developed strategies to evade international sanctions and prevent takedowns. This article has been indexed from CyberMaterial Read the original article: Triad Nexus Evades Sanctions
Australia Social Media Ban Faces Questions
Australia’s recent social media ban, aimed at restricting access for users under 16, is facing significant scrutiny following a new study that questions its effectiveness. This article has been indexed from CyberMaterial Read the original article: Australia Social Media Ban…
Cybersecurity of Critical Sectors Handbook
ENISA has released a new handbook designed to assist national and sectorial authorities in managing cybersecurity and resilience for critical sectors. This article has been indexed from CyberMaterial Read the original article: Cybersecurity of Critical Sectors Handbook
Patchstack Bug Bounty Program
Patchstack has introduced a Bug Bounty program designed to engage cybersecurity researchers, developers, and bug bounty hunters in identifying and reporting security vulnerabilities in WordPress plugins. This article has been indexed from CyberMaterial Read the original article: Patchstack Bug Bounty…
IT Security News Hourly Summary 2026-04-14 15h : 14 posts
14 posts were published in the last hour 12:32 : Botnet Exposed: Hackers Leave Worker Access and Root Passwords Wide Open 12:32 : Omnistealer uses the blockchain to steal everything it can 12:32 : How to Tell if An Email…
Botnet Exposed: Hackers Leave Worker Access and Root Passwords Wide Open
Hackers have left a live Twitter/X credential‑stuffing botnet effectively unlocked, exposing its full command‑and‑control stack, worker fleet, and root passwords to anyone who knows where to look. The C2 runs on a Windows Server 2019 instance hosted by Hetzner in…
Omnistealer uses the blockchain to steal everything it can
This malware is coming for your password managers, saved logins, cloud storage, crypto wallets, and just about anything else it can reach. This article has been indexed from Malwarebytes Read the original article: Omnistealer uses the blockchain to steal everything…
How to Tell if An Email is Fake: Complete Verification Guide
Originally published at How to Tell if An Email is Fake: Complete Verification Guide by Levon Vardumyan. A fake email is an email that appears … The post How to Tell if An Email is Fake: Complete Verification Guide appeared…
Hackers Exploit Obsidian Plugin for Malware
A new cyber threat has emerged as hackers exploit the Shell Commands plugin in Obsidian, a popular note-taking application, to deliver a sophisticated malware chain. This article has been indexed from CyberMaterial Read the original article: Hackers Exploit Obsidian Plugin…
Hackers Target Okta with Vishing Attacks
Cybercriminals are shifting their tactics from traditional email phishing to more direct voice-based social engineering attacks, known as vishing, to infiltrate corporate systems. This article has been indexed from CyberMaterial Read the original article: Hackers Target Okta with Vishing Attacks
Booking.com Confirms Data Breach
Booking.com, a leading global travel booking platform, has confirmed a data breach involving unauthorized access to customer information. This article has been indexed from CyberMaterial Read the original article: Booking.com Confirms Data Breach
Janela RAT Spreads via Fake MSI Installers, Malicious Extensions
Janela Remote Access Trojan (RAT) campaign using fake Windows MSI installers and malicious browser extensions to infiltrate financial networks and exfiltrate sensitive data. The latest Janela RAT samples are being distributed through public GitLab repositories, where attackers host MSI installation files disguised as legitimate software installers.…
ShinyHunters claim the hack of Rockstar Games breach and started leaking data
Leak of 8.1GB data tied to Rockstar Games includes anti-cheat code, game data, analytics and more, reportedly exposed by ShinyHunters. An 8.1GB data leak reportedly linked to Rockstar Games has surfaced, with files shared by ShinyHunters after being obtained via…
16-31 March 2025 Cyber Attacks Timeline
The second half of March 2026 has been very active from an infosec standpoint, with 124 events and a threat landscape dominated by malware. As always, cyber crime led the motivations chart with 65%, slightly up from the previous timeline.…
Hackers Bypass Phishing Emails and Target Okta Identity Systems Instead
Cybercriminals are changing the way they break into organizations. Instead of sending malicious emails and waiting for someone to click a link, attackers are now picking up the phone and calling their way into corporate systems. This shift is one…
Hackers Weaponize Obsidian Shell Commands Plugin to Launch Cross-Platform Malware Attacks
Threat actors have found a clever way to abuse a trusted productivity tool to deliver malware. By weaponizing Obsidian’s Shell Commands community plugin, attackers are quietly executing malicious code on victims’ machines — all without exploiting a single software vulnerability.…
Binary Defense expands NightBeacon with threat-aligned Detection Coverage Index
Binary Defense has announced the launch of NightBeacon Detect, a new module within NightBeacon, the company’s AI-driven SOC platform. The first capability released is Detection Coverage Index, a confidence-based view of how well an organization is covered against specific threat…