Threat actors are exploiting a recently disclosed critical security flaw in Ghost CMS to inject malicious JavaScript code with an aim to fuel ClickFix attacks. According to QiAnXin XLab, the activity involves the exploitation of CVE-2026-26980 (CVSS score: 9.4), an…
Telegram Channels Selling Verified Bank Mule Accounts
Cybercriminal organizations are actively selling verified bank and fintech mule accounts through Telegram channels and other encrypted messaging platforms, according to recent threat intelligence findings. This article has been indexed from CyberMaterial Read the original article: Telegram Channels Selling Verified…
7-Eleven data breach impacts franchisee data
7-Eleven has confirmed a data breach that compromised information belonging to its franchisees, according to Chief Information Security Officer Jim Kastle. This article has been indexed from CyberMaterial Read the original article: 7-Eleven data breach impacts franchisee data
Cydome, Rakuten Maritime partner on vessel cybersecurity
Cydome and Rakuten Maritime announced a strategic partnership focused on strengthening cybersecurity defenses for commercial vessels. This article has been indexed from CyberMaterial Read the original article: Cydome, Rakuten Maritime partner on vessel cybersecurity
Italian Authorities Dismantle CINEMAGOAL Piracy App
Italian authorities have successfully dismantled a large-scale piracy network centered on the CINEMAGOAL application, which provided unauthorized access to premium streaming platforms. This article has been indexed from CyberMaterial Read the original article: Italian Authorities Dismantle CINEMAGOAL Piracy App
Security Masters Society launched
A new professional organization called the Security Masters Society has been established to advance information security education and knowledge sharing across the industry. This article has been indexed from CyberMaterial Read the original article: Security Masters Society launched
APT Group Patches termsrv.dll to Enable Multiple RDP Sessions
A sustained cyber espionage campaign attributed to the Cloud Atlas advanced persistent threat (APT) group has introduced a stealthy technique that modifies the Windows termsrv.dll library to enable multiple Remote Desktop Protocol (RDP) sessions on compromised systems. Observed throughout 2025…
US states step up cyber defenses to protect local communities
U.S. state governments are taking on a larger role in cybersecurity to help protect local communities and essential services. Many states are building state-led cyber defense programs, including cybersecurity clinics, regional security operations centers (RSOCs), and state cyber corps programs…
Netherlands Busts Bulletproof Hosting Network Linked to Disinformation and Cybercrime
Dutch authorities arrested two suspects after dismantling a bulletproof hosting network linked to cybercrime, disinfo, and Russian sanctions evasion. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original article: Netherlands Busts…
Zero-Click WhatsApp Account Takeover Hits iPhone Users Running iOS 16. No Linked Devices, No Warning
A zero-click attack targeting iPhones on iOS 16 hijacked WhatsApp accounts without linked devices, warnings, or user interaction. There is a particular kind of security incident that is harder to explain than most: your WhatsApp account is sending messages you…
Italian Authorities Dismantled CINEMAGOAL App that Enables Access to Various Streaming Platforms
Italian law enforcement has dismantled a large-scale audiovisual piracy network centered around a sophisticated application called CINEMAGOAL, which enabled users to access premium streaming services without authorization. The operation, codenamed “All Clear”, was led by the Ravenna Financial Police under the direction…
Hackers Actives Scanning SonicWall Firewall Interfaces – 597,000 Sessions Observed
A sharp rise in internet-wide scanning activity targeting SonicWall firewall management interfaces has been detected, raising concerns about a potential pre-disclosure reconnaissance phase tied to new vulnerabilities. Threat intelligence firm GreyNoise reported a significant surge in scanning of SonicWall SonicOS…
266,000 Affected by Data Breach at Radiology Associates of Richmond
Threat actors stole files containing names and protected health information from the healthcare organization’s systems. The post 266,000 Affected by Data Breach at Radiology Associates of Richmond appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
The AI Era Is Creating a Bug Hunting Arms Race
As attackers ramp up their AI exploit development, the search for software vulnerabilities is changing rapidly. This article has been indexed from Security Latest Read the original article: The AI Era Is Creating a Bug Hunting Arms Race
Laravel-Lang Packages Poisoned for Malware Delivery
Published within a 15-minute window, the malicious tags introduced backdoors to exfiltrate CI secrets. The post Laravel-Lang Packages Poisoned for Malware Delivery appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Laravel-Lang Packages Poisoned…
Anthropic: Mythos Detected 23,000 Potential Vulnerabilities Across 1,000 OSS Projects
Many findings have been confirmed to be critical or high-severity vulnerabilities and the number will continue to increase. The post Anthropic: Mythos Detected 23,000 Potential Vulnerabilities Across 1,000 OSS Projects appeared first on SecurityWeek. This article has been indexed from…
Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms
Cybersecurity researchers have shed light on a cross-platform malware called RemotePE that has been put to use by the North Korea-linked Lazarus Group in attacks targeting financial and cryptocurrency organizations. RemotePE, per NCC Group subsidiary Fox-IT, is part of a…
Italian Authorities Dismantle CINEMAGOAL App Enabling Unauthorised Access to Streaming Platforms
Italian law enforcement agencies have dismantled a sophisticated piracy operation centered around the CINEMAGOAL application, which enabled unauthorized access to premium streaming platforms including Netflix, Sky, DAZN, Disney+, and Spotify. The operation, codenamed “All Clear,” was led by the Financial…
Telegram Channels Fuel Sale of Verified Bank Mule Accounts
Cybercriminal groups are increasingly using Telegram channels and encrypted platforms to sell verified bank and fintech mule accounts, signaling a major shift in how illicit funds are laundered at scale. According to recent threat intelligence findings, money mule operations have…
WhatsApp Chat Histories Exposed in Unencrypted Storage on macOS and iOS
Security researchers have raised concerns over how WhatsApp stores user chat data on macOS and iOS, revealing that message databases may be stored in unencrypted form within app group containers accessible by other applications from the same developer ecosystem. According…
IT Security News Hourly Summary 2026-05-25 12h : 11 posts
11 posts were published in the last hour 10:4 : Hackers Actively Scan SonicWall Firewall Interfaces as 597,000 Sessions Observed 10:4 : Authorities Seized 800 Servers of Hosting Company Used to Launch Cyberattacks 10:4 : WhatsApp Chat Histories Stored Unencrypted…
Hackers Actively Scan SonicWall Firewall Interfaces as 597,000 Sessions Observed
A sharp surge in internet scanning activity targeting SonicWall firewall management interfaces has raised concerns among cybersecurity researchers, with GreyNoise reporting nearly 597,000 sessions in a single day. The spike, observed on May 12, 2026, marks the highest volume recorded…
Authorities Seized 800 Servers of Hosting Company Used to Launch Cyberattacks
Dutch authorities have seized more than 800 servers and arrested two individuals as part of a major investigation into a hosting infrastructure allegedly used to support cyberattacks, disinformation campaigns, and sanctions evasion linked to Russia. The Fiscal Information and Investigation…
WhatsApp Chat Histories Stored Unencrypted on macOS and iOS
Security researchers have revealed that WhatsApp chat histories may be stored unencrypted on both macOS and iOS devices, raising fresh concerns about local data protection and cross-application access within the Apple ecosystem. The issue, highlighted by iOS security researchers at…