Secret Blizzard upgrades Kazuar malware into P2P espionage botnet
The latest Kazuar variant now supports roughly 150 configuration options.
Cybersecurity News - Page 8
Cyber Security Week in Review: May 15, 2026
In brief: Cisco patches Catalyst SD-WAN Controller zero-day, Microsoft warns of an Exchange zero-day, GTIG details a first AI-developed zero-day exploit, and more.
China-linked FamousSparrow hackers target Azerbaijani oil and gas industry
The attackers reportedly exploited the Microsoft Exchange “ProxyNotShell” vulnerability chain to gain initial access.
Iran-linked Seedworm hackers breached Korean electronics maker in global spying campaign
Researchers observed the group abusing two trusted binaries to load malicious DLLs.
RubyGems temporarily suspends new account sign-ups due to malicious attack
The organization said that more than 500 malicious packages uploaded during the campaign.
Former federal contractor convicted of wiping dozens of US government databases
The brothers wiped approximately 96 government databases, including investigative files and FOIA records maintained by several federal agencies.
Fortinet patches multiple flaws in its products
Organizations are strongly recommended to apply security updates ASAP.
Hundreds of npm and PyPI packages compromised in new Shai-Hulud attack
The attackers were able to generate valid SLSA Build Level 3 provenance attestations, making the infected packages appear authentic and cryptographically verified.
Hackers backdoor Checkmarx Jenkins plugin to steal developer credentials in latest supply-chain attack
TeamPCP gained access to Checkmarx GitHub repositories using credentials stolen during the March Trivy compromise.
Mr_Rot13 exploits cPanel flaw to deploy cross-platform Filemanager backdoor
Telemetry identified more than 2,000 attacker IP addresses involved in automated exploitation campaigns worldwide.
Showing elements 71 - 80