Cyber Security Week in Review: May, 29

In brief: KnowledgeDeliver zero-day exploited to deploy the Bluebeam malware, a FortiClient EMS flaw abused in EKZ Infostealer attacks, and more.

Latest Security News

View Archive →

Security News

FortiClient EMS flaw exploited to deploy EKZ infostealer via fake Fortinet patch

The threat actors appear to have abused trusted management channels to execute malicious PowerShell commands across connected systems.

May 28, 2026 3 min read

Security News

China-linked hackers hijack Southeast Asian routers using custom Linux malware and DNS redirection

The campaign targets border routers and network infrastructure rather than traditional endpoints.

May 27, 2026 3 min read

Security News

Dutch police arrest suspect in major cyberattack on Ajax Amsterdam systems

Ajax first disclosed the breach in March, revealing that attackers exploited vulnerabilities in its IT infrastructure to access personal data.

May 27, 2026 2 min read

Security News

Glassworm botnet behind multiple supply-chain attacks dismantled

The coordinated operation disrupted all Glasswormu2019s communication channels, cutting operators off from infected systems.

🕒 May 27, 2026 • 2 min read

Security News

UK sanctions Russia-linked crypto networks and exchanges

The UK action largely targets the A7 network, which officials say is a critical tool for sanctions circumvention and facilitating payments connected to Russian oil exports.

🕒 May 27, 2026 • 3 min read

Security News

North Korea-linked hackers upgrade InvisibleFerret malware with Cython obfuscation

The updated InvisibleFerret malware is now distributed as .pyd files on Windows and .so files on macOS.

🕒 May 26, 2026 • 3 min read

Cyber Security Week in Review: May, 29

Latest Security News

FortiClient EMS flaw exploited to deploy EKZ infostealer via fake Fortinet patch

China-linked hackers hijack Southeast Asian routers using custom Linux malware and DNS redirection

Dutch police arrest suspect in major cyberattack on Ajax Amsterdam systems

Glassworm botnet behind multiple supply-chain attacks dismantled

UK sanctions Russia-linked crypto networks and exchanges

North Korea-linked hackers upgrade InvisibleFerret malware with Cython obfuscation

Please verify you're human