Latest Cybersecurity News and Articles

Hackers Abuse ScreenConnect to Hijack PCs via Fake Social Security Emails

Hackers are exploiting fake Social Security Administration (SSA) emails to hijack PCs by abusing the ScreenConnect tool. This attack does not rely on new viruses but rather on hijacking existing tools and weakening system defenses.

Keenadu the tablet conqueror and the links between major Android botnets

Keenadu is a sophisticated backdoor targeting Android devices by embedding itself into the firmware. It mirrors the behavior of the Triada backdoor, allowing attackers to control devices remotely and exfiltrate data.

SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer

The SmartLoader campaign involves a sophisticated attack using a trojanized Oura MCP server to deploy the StealC infostealer. Threat actors have invested months in building credibility by creating fake GitHub accounts and repositories.

Hackers target supporters of Iran protests in new espionage campaign

A cyberespionage campaign targets supporters of Iran's anti-government protests, focusing on Farsi-speaking Iranians, activists, and journalists. The campaign exploits the ongoing internet blackout in Iran and is linked to Iranian-aligned hackers.

Vulnerabilities in Password Managers Allow Hackers to Change Passwords

A recent study by academic researchers uncovered 27 vulnerabilities in popular cloud-based password managers: Bitwarden, LastPass, Dashlane, and 1Password. These vulnerabilities allow attackers to view and change passwords.

Infostealer malware found stealing OpenClaw secrets for first time

OpenClaw, formerly known as ClawdBot and MoltBot, is a widely adopted AI assistant framework that has become a target for infostealer malware. This malware is capable of stealing sensitive configuration files.

Arizona Urologist warns 73,000+ people of data breach that leaked SSNs, medical and financial info

Academic Urology & Urogynecology of Arizona has notified over 73,000 individuals of a data breach that compromised sensitive personal, financial, and medical information. The breach is attributed to the ransomware group Inc.

BeyondTrust RCE Exploited for Domain Control

CVE-2026-1731, a critical unauthenticated OS command injection vulnerability, is being actively exploited in self-hosted BeyondTrust Remote Support and Privileged Remote Access deployments.

A security flaw at DavaIndia Pharmacy allowed attackers to access customers' data and more

A critical security vulnerability at DavaIndia Pharmacy exposed customer data and allowed unauthorized administrative access. The flaw was due to an exposed admin subdomain, which permitted unauthenticated access to super-admin APIs.

Eurail says stolen traveler data now up for sale on dark web

Eurail B.V. has confirmed a data breach where sensitive traveler information is now for sale on the dark web. A sample of this data has been published on Telegram, highlighting the immediacy and visibility of the threat.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags