Microsoft Access files (Microsoft Office's Database) can contain VBA code. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: Microsoft Access VBA, (Mon, May 25th)
Tag: EN
Kazuar Malware Evolves Into Modular Espionage Ecosystem for Secret Blizzard Operations
A Russian state-sponsored threat group has quietly upgraded one of its most powerful cyber weapons, and the result is a spying tool that is harder to detect, harder to kill, and more capable than ever before. Security researchers have now…
TeamPCP Supply Chain Campaign: Activity Through 2026-05-24, (Mon, May 25th)
TeamPCP now operates across three package ecosystems in parallel, it reached GitHub's own internal codebase, it trojanized an officially Microsoft-published Python SDK, and it appears to have open-sourced its own framework on GitHub. This article has been indexed from SANS…
Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and disinformation campaigns inside the European Union. The two men were the focus…
Ghost CMS Vulnerability Exploited to Hack Over 700 Websites
Sites belonging to major universities such as Harvard and Oxford, as well as DuckDuckGo, have been compromised in the attack. The post Ghost CMS Vulnerability Exploited to Hack Over 700 Websites appeared first on SecurityWeek. This article has been indexed…
Authorities seize 800 servers used for cyberattacks and disinformation
Dutch authorities arrested two men and seized 800 servers linked to a hosting provider that investigators say supported Russian activities aimed at undermining democracy and security through cyberattacks, disinformation, and disruption of public and economic systems. Servers seized by Dutch…
InvisibleFerret Malware Uses .pyd and .so Files to Evade Script Detection
A North Korea-linked threat group, Void Dokkaebi, also known as Famous Chollima, has significantly upgraded its malware delivery techniques by converting its Python-based InvisibleFerret malware into compiled binary modules. InvisibleFerret was previously deployed as readable Python scripts, making it easier…
Oncology Institute Discloses Data Breach
The affected third-party vendor has not been named, but one possible candidate is TriZetto. The post Oncology Institute Discloses Data Breach appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Oncology Institute Discloses Data…
The Alert Firehose Finally Meets Its Match
Ask a cybersecurity pro about Network Detection and Response (NDR) and you might still hear “Noisy,” “Too much data.” But ask the teams running NDR that includes agentic AI capabilities and you’ll hear they’re actually using it to catch threats…
Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks
Threat actors are exploiting a recently disclosed critical security flaw in Ghost CMS to inject malicious JavaScript code with an aim to fuel ClickFix attacks. According to QiAnXin XLab, the activity involves the exploitation of CVE-2026-26980 (CVSS score: 9.4), an…
Telegram Channels Selling Verified Bank Mule Accounts
Cybercriminal organizations are actively selling verified bank and fintech mule accounts through Telegram channels and other encrypted messaging platforms, according to recent threat intelligence findings. This article has been indexed from CyberMaterial Read the original article: Telegram Channels Selling Verified…
7-Eleven data breach impacts franchisee data
7-Eleven has confirmed a data breach that compromised information belonging to its franchisees, according to Chief Information Security Officer Jim Kastle. This article has been indexed from CyberMaterial Read the original article: 7-Eleven data breach impacts franchisee data
Cydome, Rakuten Maritime partner on vessel cybersecurity
Cydome and Rakuten Maritime announced a strategic partnership focused on strengthening cybersecurity defenses for commercial vessels. This article has been indexed from CyberMaterial Read the original article: Cydome, Rakuten Maritime partner on vessel cybersecurity
Italian Authorities Dismantle CINEMAGOAL Piracy App
Italian authorities have successfully dismantled a large-scale piracy network centered on the CINEMAGOAL application, which provided unauthorized access to premium streaming platforms. This article has been indexed from CyberMaterial Read the original article: Italian Authorities Dismantle CINEMAGOAL Piracy App
Security Masters Society launched
A new professional organization called the Security Masters Society has been established to advance information security education and knowledge sharing across the industry. This article has been indexed from CyberMaterial Read the original article: Security Masters Society launched
APT Group Patches termsrv.dll to Enable Multiple RDP Sessions
A sustained cyber espionage campaign attributed to the Cloud Atlas advanced persistent threat (APT) group has introduced a stealthy technique that modifies the Windows termsrv.dll library to enable multiple Remote Desktop Protocol (RDP) sessions on compromised systems. Observed throughout 2025…
US states step up cyber defenses to protect local communities
U.S. state governments are taking on a larger role in cybersecurity to help protect local communities and essential services. Many states are building state-led cyber defense programs, including cybersecurity clinics, regional security operations centers (RSOCs), and state cyber corps programs…
Netherlands Busts Bulletproof Hosting Network Linked to Disinformation and Cybercrime
Dutch authorities arrested two suspects after dismantling a bulletproof hosting network linked to cybercrime, disinfo, and Russian sanctions evasion. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original article: Netherlands Busts…
Zero-Click WhatsApp Account Takeover Hits iPhone Users Running iOS 16. No Linked Devices, No Warning
A zero-click attack targeting iPhones on iOS 16 hijacked WhatsApp accounts without linked devices, warnings, or user interaction. There is a particular kind of security incident that is harder to explain than most: your WhatsApp account is sending messages you…
Italian Authorities Dismantled CINEMAGOAL App that Enables Access to Various Streaming Platforms
Italian law enforcement has dismantled a large-scale audiovisual piracy network centered around a sophisticated application called CINEMAGOAL, which enabled users to access premium streaming services without authorization. The operation, codenamed “All Clear”, was led by the Ravenna Financial Police under the direction…