A Latvian national operating out of Moscow was sentenced to 102 months in federal prison for his central role in a sprawling Russian ransomware syndicate. Deniss Zolotarjovs, 35, served as a primary extortionist and negotiator for a highly organized cybercriminal…
QLNX Targets Developers With Credential Theft Designed for Supply Chain Compromise
A new and previously undocumented Linux threat has emerged, targeting software developers in a way that could put entire supply chains at risk. Named Quasar Linux, or QLNX, this malware operates as a full-featured remote access trojan built specifically for…
CloudZ RAT Abuses Microsoft Phone Link to Steal SMS OTPs and Mobile Notifications
A newly discovered threat is turning a built-in Microsoft feature into a powerful spying tool. Security researchers have found a remote access tool called CloudZ that works alongside a custom plugin named Pheno to silently intercept SMS messages and one-time…
IT Security News Hourly Summary 2026-05-06 21h : 7 posts
7 posts were published in the last hour 18:32 : AI evaluation startup Braintrust confirms breach, tells every customer to rotate sensitive keys 18:32 : DOJ says ransomware gang tapped into Russian government databases 18:32 : Innovators Spotlight: Badge (Part…
AI evaluation startup Braintrust confirms breach, tells every customer to rotate sensitive keys
Braintrust, a startup that makes an “operating system for engineers building AI software,” notified customers that hackers broke into one of its Amazon cloud environments, and is asking customers to rotate their API keys. This article has been indexed from…
DOJ says ransomware gang tapped into Russian government databases
U.S. prosecutors said a ransomware gang fueled Russian government corruption, and allowed the gang’s leaders to avoid paying taxes and dodge the country’s military draft. This article has been indexed from Security News | TechCrunch Read the original article: DOJ…
Innovators Spotlight: Badge (Part II)
Badge Is Building The Trust Layer Your Agents Have Been Waiting For This article is a continuation of the discussion I had with the Badge team at RSAC 2025 which… The post Innovators Spotlight: Badge (Part II) appeared first on…
Arctic Wolf kicks 250 employees out of the pack to save money for AI
Cuts appear to hit sales, product, and marketing, accounting for under 10% of staff This article has been indexed from www.theregister.com – Articles Read the original article: Arctic Wolf kicks 250 employees out of the pack to save money for…
Akamai Is the 2026 Gartner® Peer Insights™ Customers’ Choice for API Protection
Read why Akamai was named the only Customers’ Choice in the 2026 Gartner Peer Insights Voice of the Customer for API Protection. This article has been indexed from Blog Read the original article: Akamai Is the 2026 Gartner® Peer Insights™…
AI Survey: 50% of Organizations Struggle to Maintain Latency at Scale
The Akamai State of AI Inference report captures real data from the field that describes how AI inference is being built and scaled in production today. This article has been indexed from Blog Read the original article: AI Survey: 50%…
1 in 8 employees totally cool with selling work credentials
13% say they’ve sold logins or know someone who has, survey suggests This article has been indexed from www.theregister.com – Articles Read the original article: 1 in 8 employees totally cool with selling work credentials
ShinyHunters’ Instructure Canvas LMS and Vimeo Breaches Impact Millions of Users
ShinyHunters breached Instructure and Vimeo, exposing millions of student and user records through direct and supply chain attacks. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original article: ShinyHunters’ Instructure Canvas…
Authenticated Arbitrary File Upload Vulnerability Patched in Slider Revolution 7 WordPress Plugin
On April 18th, 2026, we received a submission for an Authenticated Arbitrary File Upload vulnerability in Slider Revolution, a WordPress plugin. Although the plugin has more than 5,000,000 active installations, we estimate that only around 45,000 sites are using a…
Palo Alto Networks Firewall Zero-Day Exploited in Active Attacks
Palo Alto Networks disclosed a critical PAN-OS firewall vulnerability that is being actively exploited. The post Palo Alto Networks Firewall Zero-Day Exploited in Active Attacks appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the…
Google Chrome’s silent 4GB AI download problem
Google Chrome writes a 4GB AI model to users’ devices without asking, and reinstalls it if you delete it. This article has been indexed from Malwarebytes Read the original article: Google Chrome’s silent 4GB AI download problem
ClickFix campaign uses fake macOS utilities lures to deliver infostealers
Threat actors are targeting macOS users with fake utility fixes that trick them into running malicious Terminal commands. This campaign evades traditional defenses by stealing credentials, wallets, and sensitive data. The post ClickFix campaign uses fake macOS utilities lures to…
Microsoft named an overall leader in KuppingerCole Analyst’s 2026 Emerging AI Security Operations Center (SOC) report
Microsoft is excited to be named an Overall Leader, and the Market Leader in the Kuppinger Cole Analyst’s 2026 Emerging AI Security Operations Center (SOC) report, as we see automation and AI as core components of the future of cybersecurity.…
Hackers Hate AI Slop Even More Than You Do
It’s not just you. Scammers, hackers, and other cybercriminals are complaining about “AI shit” flooding platforms where they discuss cyberattacks and other illegal activity. This article has been indexed from Security Latest Read the original article: Hackers Hate AI Slop…
Some kids are bypassing age-verification checks with a fake mustache
A new survey found that kids find it easy to bypass age checks, despite a rise in age-verification laws around the world. This article has been indexed from Security News | TechCrunch Read the original article: Some kids are bypassing…
Iran cybersnoops still LARPing as ransomware crooks in espionage ops
MOIS-linked cyber outfit puts on a ransomware show to disguise the wide-open backdoor behind the scenes This article has been indexed from www.theregister.com – Articles Read the original article: Iran cybersnoops still LARPing as ransomware crooks in espionage ops
Cybercriminals Are Complaining About AI Slop Flooding Their Forums
It’s not just you. Hackers and other cybercriminals are complaining about “AI shit” flooding platforms where they discuss cyberattacks and other illegal activity. This article has been indexed from Security Latest Read the original article: Cybercriminals Are Complaining About AI…
UK Finance Sector Puts Cyber Defences to the Test in National Hackathon
Over the course of two days (April 27-28), banks, fintech companies, technology providers, and regulators from across the UK financial ecosystem came together for a cybersecurity competition designed to test real-world readiness, decision-making under pressure, and the ability to defend…
IT Security News Hourly Summary 2026-05-06 18h : 8 posts
8 posts were published in the last hour 15:34 : Iranian cyber espionage disguised as a Chaos Ransomware attack 15:34 : Remus Infostealer Uses Lumma-Style Browser Key Theft and Application-Bound Encryption Bypass 15:34 : Iranian-Nexus Operation Targets Oman Ministries With…
Iranian cyber espionage disguised as a Chaos Ransomware attack
Iran-linked APT MuddyWater used ransomware-style tactics to mask espionage, combining phishing, credential theft, data exfiltration, and extortion without encryption. A newly discovered cyber intrusion attributed to the Iran-linked APT MuddyWater (aka SeedWorm, TEMP.Zagros, Mango Sandstorm, TA450, and Static Kitten) reveals how state-sponsored attackers are increasingly leveraging…