Create Your Account
Register to submit speaker proposals and award applications
Live Threat IntelLive
Vibe coding upstart Lovable denies data leak, cites 'intentional behavior,' then throws HackerOne under the bus(The Register)France’s ANTS ID System website hit by cyberattack, possible data breach(Security Affairs)The Gentlemen ransomware now uses SystemBC for bot-powered attacks(Bleeping Computer)Seiko USA website defaced as hacker claims customer data theft(Bleeping Computer)SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files(The Hacker News)ZionSiphon Malware Targets Water Infrastructure Systems(Infosecurity Magazine)Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking(SecurityWeek)Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection(Infosecurity Magazine)Cyberattack at French identity document agency may have exposed personal data(The Record)Bluesky blames app outage on ‘sophisticated’ DDoS attack(The Record)CVE-2023-33538 under attack for a year, but exploitation still unsuccessful(Security Affairs)Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet(Infosecurity Magazine)Breach at BE PRIME cybersecurity company exposes client data and surveillance systems; Be Prime threatens journalists(DataBreaches.net)British Scattered Spider hacker pleads guilty to crypto theft charges(Bleeping Computer)Supply Chain Compromise Impacts Axios Node Package Manager(CISA Advisories)Bluesky Disrupted by Sophisticated DDoS Attack(SecurityWeek)Third-party AI hack triggers Vercel breach, internal environments accessed(Security Affairs)Next.js Creator Vercel Hacked(SecurityWeek)Hackers Fail to Exploit Flaw in Discontinued TP-Link Routers(SecurityWeek)Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems(The Hacker News)Next.js developer Vercel warns of customer credential compromise(The Register)Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials(The Hacker News)Just like phishing for gullible humans, prompt injecting AIs is here to stay(The Register)Vercel confirms breach as hackers claim to be selling stolen data(Bleeping Computer)Apple account change alerts abused to send phishing emails(Bleeping Computer)Qilin’s 2024 attack on NHS vendor continues to impact patient care for one NHS Trust(DataBreaches.net)SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 93(Security Affairs)Hidden VMs: how hackers leverage QEMU to stealthily steal data and spread malware(Security Affairs)Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware(DataBreaches.net)Judge lets state auditor’s investigation into data breach affecting Blue Cross Blue Shield members move forward(DataBreaches.net)Tycoon 2FA Loses Phishing Kit Crown Amid Surge in Attacks(SecurityWeek)Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet(The Hacker News)Tycoon 2FA Phishers Scatter, Adopt Device Code Phishing(Dark Reading)CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack(The Register)DDoS-For-Hire Services Disrupted by International Police Action in ‘Operation PowerOff’(Infosecurity Magazine)That data breach alert might be a trap(ESET Research)Claude Opus wrote a Chrome exploit for $2,283(The Register)A Deep Dive Into Attempted Exploitation of CVE-2023-33538(Palo Alto Unit 42)APK Malformation Found in Thousands of Android Malware Samples(Infosecurity Magazine)Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack(Infosecurity Magazine)Vibe coding upstart Lovable denies data leak, cites 'intentional behavior,' then throws HackerOne under the bus(The Register)France’s ANTS ID System website hit by cyberattack, possible data breach(Security Affairs)The Gentlemen ransomware now uses SystemBC for bot-powered attacks(Bleeping Computer)Seiko USA website defaced as hacker claims customer data theft(Bleeping Computer)SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files(The Hacker News)ZionSiphon Malware Targets Water Infrastructure Systems(Infosecurity Magazine)Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking(SecurityWeek)Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection(Infosecurity Magazine)Cyberattack at French identity document agency may have exposed personal data(The Record)Bluesky blames app outage on ‘sophisticated’ DDoS attack(The Record)CVE-2023-33538 under attack for a year, but exploitation still unsuccessful(Security Affairs)Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet(Infosecurity Magazine)Breach at BE PRIME cybersecurity company exposes client data and surveillance systems; Be Prime threatens journalists(DataBreaches.net)British Scattered Spider hacker pleads guilty to crypto theft charges(Bleeping Computer)Supply Chain Compromise Impacts Axios Node Package Manager(CISA Advisories)Bluesky Disrupted by Sophisticated DDoS Attack(SecurityWeek)Third-party AI hack triggers Vercel breach, internal environments accessed(Security Affairs)Next.js Creator Vercel Hacked(SecurityWeek)Hackers Fail to Exploit Flaw in Discontinued TP-Link Routers(SecurityWeek)Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems(The Hacker News)Next.js developer Vercel warns of customer credential compromise(The Register)Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials(The Hacker News)Just like phishing for gullible humans, prompt injecting AIs is here to stay(The Register)Vercel confirms breach as hackers claim to be selling stolen data(Bleeping Computer)Apple account change alerts abused to send phishing emails(Bleeping Computer)Qilin’s 2024 attack on NHS vendor continues to impact patient care for one NHS Trust(DataBreaches.net)SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 93(Security Affairs)Hidden VMs: how hackers leverage QEMU to stealthily steal data and spread malware(Security Affairs)Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware(DataBreaches.net)Judge lets state auditor’s investigation into data breach affecting Blue Cross Blue Shield members move forward(DataBreaches.net)Tycoon 2FA Loses Phishing Kit Crown Amid Surge in Attacks(SecurityWeek)Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet(The Hacker News)Tycoon 2FA Phishers Scatter, Adopt Device Code Phishing(Dark Reading)CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack(The Register)DDoS-For-Hire Services Disrupted by International Police Action in ‘Operation PowerOff’(Infosecurity Magazine)That data breach alert might be a trap(ESET Research)Claude Opus wrote a Chrome exploit for $2,283(The Register)A Deep Dive Into Attempted Exploitation of CVE-2023-33538(Palo Alto Unit 42)APK Malformation Found in Thousands of Android Malware Samples(Infosecurity Magazine)Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack(Infosecurity Magazine)