Bots gone bad. A fresh ransomware operation is riding the automation wave by using the Phorpiex botnet to silently deliver and execute LockBit ransomware without breaking a sweat. Meanwhile, a China-aligned APT group known as TheWizards is abusing an IPv6 feature and deploying its own malware, Spellbinder, to hijack Windows software updates. The FBI has pulled back the curtain on LabHost, a PhaaS platform tied to over 42,000 malicious domains, enabling criminals to mimic 200+ real organizations and fleece millions of unsuspecting victims. Check out the hottest cybersecurity stories making waves today.