Live Threat IntelLive
Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet(Infosecurity Magazine)Breach at BE PRIME cybersecurity company exposes client data and surveillance systems; Be Prime threatens journalists(DataBreaches.net)British Scattered Spider Hacker Pleads Guilty in the US(SecurityWeek)Bluesky Disrupted by Sophisticated DDoS Attack(SecurityWeek)Third-party AI hack triggers Vercel breach, internal environments accessed(Security Affairs)Next.js Creator Vercel Hacked(SecurityWeek)Hackers Fail to Exploit Flaw in Discontinued TP-Link Routers(SecurityWeek)Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems(The Hacker News)Next.js developer Vercel warns of customer credential compromise(The Register)Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials(The Hacker News)Just like phishing for gullible humans, prompt injecting AIs is here to stay(The Register)Vercel confirms breach as hackers claim to be selling stolen data(Bleeping Computer)Apple account change alerts abused to send phishing emails(Bleeping Computer)Qilin’s 2024 attack on NHS vendor continues to impact patient care for one NHS Trust(DataBreaches.net)SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 93(Security Affairs)Hidden VMs: how hackers leverage QEMU to stealthily steal data and spread malware(Security Affairs)NAKIVO v11.2: Ransomware Defense, Faster Replication, vSphere 9, and Proxmox VE 9.0 Support(Bleeping Computer)Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware(DataBreaches.net)Judge lets state auditor’s investigation into data breach affecting Blue Cross Blue Shield members move forward(DataBreaches.net)Tycoon 2FA Loses Phishing Kit Crown Amid Surge in Attacks(SecurityWeek)Microsoft Defender under attack as three zero-days, two of them still unpatched, enable elevated access(Security Affairs)Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet(The Hacker News)Payouts King ransomware uses QEMU VMs to bypass endpoint security(Bleeping Computer)Tycoon 2FA Phishers Scatter, Adopt Device Code Phishing(Dark Reading)Ransomware attack continues to disrupt healthcare in London nearly two years later(The Record)Four arrested in latest ‘PowerOFF’ DDoS-for-hire takedown(The Record)CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack(The Register)DraftKings hacker sentenced to prison, ordered to pay $1.4 Million(Security Affairs)DDoS-For-Hire Services Disrupted by International Police Action in ‘Operation PowerOff’(Infosecurity Magazine)That data breach alert might be a trap(ESET Research)Claude Opus wrote a Chrome exploit for $2,283(The Register)Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts(The Hacker News)Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation(The Hacker News)A Deep Dive Into Attempted Exploitation of CVE-2023-33538(Palo Alto Unit 42)APK Malformation Found in Thousands of Android Malware Samples(Infosecurity Magazine)Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack(Infosecurity Magazine)Automotive Ransomware Attacks Double in a Year(Infosecurity Magazine)6-Year Ransomware Campaign Targets Turkish Homes & SMBs(Dark Reading)Russia Hacked Routers to Steal Microsoft Office Tokens(Krebs on Security)Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure(CISA Advisories)Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet(Infosecurity Magazine)Breach at BE PRIME cybersecurity company exposes client data and surveillance systems; Be Prime threatens journalists(DataBreaches.net)British Scattered Spider Hacker Pleads Guilty in the US(SecurityWeek)Bluesky Disrupted by Sophisticated DDoS Attack(SecurityWeek)Third-party AI hack triggers Vercel breach, internal environments accessed(Security Affairs)Next.js Creator Vercel Hacked(SecurityWeek)Hackers Fail to Exploit Flaw in Discontinued TP-Link Routers(SecurityWeek)Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems(The Hacker News)Next.js developer Vercel warns of customer credential compromise(The Register)Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials(The Hacker News)Just like phishing for gullible humans, prompt injecting AIs is here to stay(The Register)Vercel confirms breach as hackers claim to be selling stolen data(Bleeping Computer)Apple account change alerts abused to send phishing emails(Bleeping Computer)Qilin’s 2024 attack on NHS vendor continues to impact patient care for one NHS Trust(DataBreaches.net)SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 93(Security Affairs)Hidden VMs: how hackers leverage QEMU to stealthily steal data and spread malware(Security Affairs)NAKIVO v11.2: Ransomware Defense, Faster Replication, vSphere 9, and Proxmox VE 9.0 Support(Bleeping Computer)Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware(DataBreaches.net)Judge lets state auditor’s investigation into data breach affecting Blue Cross Blue Shield members move forward(DataBreaches.net)Tycoon 2FA Loses Phishing Kit Crown Amid Surge in Attacks(SecurityWeek)Microsoft Defender under attack as three zero-days, two of them still unpatched, enable elevated access(Security Affairs)Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet(The Hacker News)Payouts King ransomware uses QEMU VMs to bypass endpoint security(Bleeping Computer)Tycoon 2FA Phishers Scatter, Adopt Device Code Phishing(Dark Reading)Ransomware attack continues to disrupt healthcare in London nearly two years later(The Record)Four arrested in latest ‘PowerOFF’ DDoS-for-hire takedown(The Record)CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack(The Register)DraftKings hacker sentenced to prison, ordered to pay $1.4 Million(Security Affairs)DDoS-For-Hire Services Disrupted by International Police Action in ‘Operation PowerOff’(Infosecurity Magazine)That data breach alert might be a trap(ESET Research)Claude Opus wrote a Chrome exploit for $2,283(The Register)Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts(The Hacker News)Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation(The Hacker News)A Deep Dive Into Attempted Exploitation of CVE-2023-33538(Palo Alto Unit 42)APK Malformation Found in Thousands of Android Malware Samples(Infosecurity Magazine)Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack(Infosecurity Magazine)Automotive Ransomware Attacks Double in a Year(Infosecurity Magazine)6-Year Ransomware Campaign Targets Turkish Homes & SMBs(Dark Reading)Russia Hacked Routers to Steal Microsoft Office Tokens(Krebs on Security)Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure(CISA Advisories)