Live Threat IntelLive
Venezuela energy sector targeted by highly destructive Lotus wiper(Security Affairs)Shadow AI, deepfakes, and supply chain compromise are rewriting the financial sector threat playbook(Help Net Security)French govt agency confirms breach as hacker offers to sell data(Bleeping Computer)Ransomware negotiator caught secretly assisting BlackCat extortion scheme(Security Affairs)Murder, she wrote: Ex-FBI chief wants some ransomware crims charged with homicide(The Register)New Lotus data wiper used against Venezuelan energy, utility firms(Bleeping Computer)North Korea’s Lazarus APT stole $290M from Kelp DAO(Security Affairs)SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation(The Hacker News)Ransomware negotiator admits role in attacks he was hired to resolve(Help Net Security)Third US Security Expert Admits Helping Ransomware Gang(SecurityWeek)Yet another ex-ransomware negotiator admits turning rogue after payoff from crimelords(The Register)The Gentlemen Ransomware Expands With Rapid Affiliate Growth(Infosecurity Magazine)Dutch warship compromised with $5 tracker and a postcard(DataBreaches.net)Chinese APT Targets Indian Banks, Korean Policy Circles(Dark Reading)No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks(The Hacker News)Florida Man Working as a Ransomware Negotiator Pleads Guilty to Conspiracy to Deploy Ransomware and Extort U.S. Victims(DataBreaches.net)Former ransomware negotiator pleads guilty to BlackCat attacks(Bleeping Computer)NGate Android malware uses HandyPay NFC app to steal card data(Bleeping Computer)Adaptavist Group breach spawns imposter emails as ransomware crew claims mega-haul(The Register)Bluesky hit by 24-hour DDoS attack as pro-Iran group claims responsibility(Security Affairs)France’s ANTS ID System website hit by cyberattack, possible data breach(Security Affairs)SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files(The Hacker News)ZionSiphon Malware Targets Water Infrastructure Systems(Infosecurity Magazine)Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking(SecurityWeek)Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection(Infosecurity Magazine)CVE-2023-33538 under attack for a year, but exploitation still unsuccessful(Security Affairs)Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet(Infosecurity Magazine)Breach at BE PRIME cybersecurity company exposes client data and surveillance systems; Be Prime threatens journalists(DataBreaches.net)British Scattered Spider Hacker Pleads Guilty in the US(SecurityWeek)Third-party AI hack triggers Vercel breach, internal environments accessed(Security Affairs)Qilin’s 2024 attack on NHS vendor continues to impact patient care for one NHS Trust(DataBreaches.net)Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware(DataBreaches.net)Judge lets state auditor’s investigation into data breach affecting Blue Cross Blue Shield members move forward(DataBreaches.net)Tycoon 2FA Phishers Scatter, Adopt Device Code Phishing(Dark Reading)That data breach alert might be a trap(ESET Research)A Deep Dive Into Attempted Exploitation of CVE-2023-33538(Palo Alto Unit 42)Russia Hacked Routers to Steal Microsoft Office Tokens(Krebs on Security)Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab(Krebs on Security)Threat Brief: Widespread Impact of the Axios Supply Chain Attack(Palo Alto Unit 42)Weaponizing the Protectors: TeamPCP’s Multi-Stage Supply Chain Attack on Security Infrastructure(Palo Alto Unit 42)Venezuela energy sector targeted by highly destructive Lotus wiper(Security Affairs)Shadow AI, deepfakes, and supply chain compromise are rewriting the financial sector threat playbook(Help Net Security)French govt agency confirms breach as hacker offers to sell data(Bleeping Computer)Ransomware negotiator caught secretly assisting BlackCat extortion scheme(Security Affairs)Murder, she wrote: Ex-FBI chief wants some ransomware crims charged with homicide(The Register)New Lotus data wiper used against Venezuelan energy, utility firms(Bleeping Computer)North Korea’s Lazarus APT stole $290M from Kelp DAO(Security Affairs)SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation(The Hacker News)Ransomware negotiator admits role in attacks he was hired to resolve(Help Net Security)Third US Security Expert Admits Helping Ransomware Gang(SecurityWeek)Yet another ex-ransomware negotiator admits turning rogue after payoff from crimelords(The Register)The Gentlemen Ransomware Expands With Rapid Affiliate Growth(Infosecurity Magazine)Dutch warship compromised with $5 tracker and a postcard(DataBreaches.net)Chinese APT Targets Indian Banks, Korean Policy Circles(Dark Reading)No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks(The Hacker News)Florida Man Working as a Ransomware Negotiator Pleads Guilty to Conspiracy to Deploy Ransomware and Extort U.S. Victims(DataBreaches.net)Former ransomware negotiator pleads guilty to BlackCat attacks(Bleeping Computer)NGate Android malware uses HandyPay NFC app to steal card data(Bleeping Computer)Adaptavist Group breach spawns imposter emails as ransomware crew claims mega-haul(The Register)Bluesky hit by 24-hour DDoS attack as pro-Iran group claims responsibility(Security Affairs)France’s ANTS ID System website hit by cyberattack, possible data breach(Security Affairs)SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files(The Hacker News)ZionSiphon Malware Targets Water Infrastructure Systems(Infosecurity Magazine)Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking(SecurityWeek)Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection(Infosecurity Magazine)CVE-2023-33538 under attack for a year, but exploitation still unsuccessful(Security Affairs)Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet(Infosecurity Magazine)Breach at BE PRIME cybersecurity company exposes client data and surveillance systems; Be Prime threatens journalists(DataBreaches.net)British Scattered Spider Hacker Pleads Guilty in the US(SecurityWeek)Third-party AI hack triggers Vercel breach, internal environments accessed(Security Affairs)Qilin’s 2024 attack on NHS vendor continues to impact patient care for one NHS Trust(DataBreaches.net)Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware(DataBreaches.net)Judge lets state auditor’s investigation into data breach affecting Blue Cross Blue Shield members move forward(DataBreaches.net)Tycoon 2FA Phishers Scatter, Adopt Device Code Phishing(Dark Reading)That data breach alert might be a trap(ESET Research)A Deep Dive Into Attempted Exploitation of CVE-2023-33538(Palo Alto Unit 42)Russia Hacked Routers to Steal Microsoft Office Tokens(Krebs on Security)Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab(Krebs on Security)Threat Brief: Widespread Impact of the Axios Supply Chain Attack(Palo Alto Unit 42)Weaponizing the Protectors: TeamPCP’s Multi-Stage Supply Chain Attack on Security Infrastructure(Palo Alto Unit 42)