Cybercrime operations are expanding across illicit mining, financial fraud, and mobile malware ecosystems. A newly uncovered cryptojacking campaign is leveraging trojanized pirated software installers to trigger a multi-stage infection chain designed to optimize Monero mining. In parallel, African law enforcement agencies dismantled large-scale fraud networks through Operation Red Card 2.0, arresting 651 suspects and seizing more than $4.3 million linked to investment scams and mobile money fraud. Moreover, researchers have identified a new Android banking trojan dubbed Massiv, which exploits screen overlays, keylogging, and remote access capabilities to exfiltrate sensitive user information. Keep reading further.
01
A newly discovered cryptojacking campaign exploits pirated software installers to facilitate a multi-stage infection aimed at maximizing Monero mining. This operation employs a customized XMRig miner and a controller component.
02
African law enforcement agencies arrested 651 suspects and recovered over $4.3 million in Operation Red Card 2.0, targeting cybercrimes like investment fraud and mobile money scams.
03
Researchers identified an Android banking trojan, named Massiv, which uses screen overlays, keylogging, and remote control to steal sensitive user data.
04
Check Point Research discovered that AI assistants with web browsing or URL-fetching capabilities can be exploited as covert C2 proxies, allowing attacker traffic to blend into legitimate enterprise communications.
05
Threat actors are exploiting SmarterMail vulnerabilities (CVE-2026-24423 and CVE-2026-23760) within days of disclosure, sharing proof-of-concept exploits and stolen credentials on Telegram and cybercrime forums.
06
Six vulnerabilities in OpenClaw's AI assistant have been patched, including SSRF, missing authentication, and path traversal bugs, with CVSS scores up to 7.6.
07
A 30% annual increase in ransomware victims was observed in 2025, with 7,458 victims listed on dark web leak sites. The number of ransomware groups also reached a record high of 124, with 73 new groups identified.
08
Dell patched a critical zero-day vulnerability (CVE-2026-22769) in its RecoverPoint for Virtual Machines product, which had been exploited by a Chinese APT group since 2024.
09
Cybersecurity researchers have identified a critical vulnerability in the Grandstream GXP1600 series of VoIP phones, tracked as CVE-2026-2329, which has a high CVSS score of 9.3.
10
A critical vulnerability, tracked as CVE-2026-1670, has been identified in multiple Honeywell CCTV products, allowing unauthorized access to camera feeds and potential account hijacking.
