UNC6692 Combines Social Engineering, Malware, Cloud Abuse
A newly discovered threat actor is using Microsoft Teams, AWS S3 buckets, and custom "Snow" malware in a multipronged campaign.
A newly discovered threat actor is using Microsoft Teams, AWS S3 buckets, and custom "Snow" malware in a multipronged campaign.
Canadian authorities have arrested three men for operating an "SMS blaster" device that pretends to be a cellular tower to send phishing texts to nearby phones. [...]
A Chinese national accused of carrying out cyberespionage operations for China's intelligence services has been extradited from Italy to the United States to face criminal charges. [...]
Uma falha em uma atualização de segurança da Microsoft abriu um novo caminho de ataque. Especialistas da Akamai descobriram que, após a correção da vulnerabilidade CVE-2026-21510 no sistema Windows, permaneceu um mecanismo oculto que força o computador da vítima a se conectar ao …
Não são só os grandes eventos, como a Copa do Mundo e feriados, que acabam replicados por golpistas: a Declaração do Imposto de Renda 2026, atualmente aberta aos contribuintes, também fez crescer as imitações de sites e e-mails por hackers. Segundo levantamento da empresa de cibe…
A Medtronic, fabricante global de dispositivos médicos, que opera também com uma filial no Brasil, confirmou em nota oficial publicada na última sexta-feira que “hackers”terceiros” acessaram dados em “certos sistemas corporativos de TI”. No dia 18 passado, o grupo que opera o ran…
ShinyHunters has leaked data linked to Udemy, Zara, and 7-Eleven, with claims of exposed Salesforce records and cloud-based systems.
Cyberattacks Announced by Florida Physician Specialists & Mile Bluff Medical Center The HIPAA Journal
Florida Physician Specialists has started notifying patients affected by a November 2025 hacking incident. Mile Bluff Medical Center in Wisconsin […] The post Cyberattacks Announced by Florida Physician Specialists & Mile Bluff Medical Center appeared first on The HIPAA Journal.
A researcher discovered five different exploit paths that stem from an architectural weakness in how Windows' Remote Procedure Call (RPC) mechanism handles connections to unavailable services.
An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive developer data and cryptocurrency wallets. [...]
On Thursday, April 30 at 2:00 PM ET, BleepingComputer will host a live webinar with threat intelligence company Flare and threat intelligence researcher Tammy Harper, exploring how security teams can identify early warning signs of attacks before they escalate into incidents. [..…
Checkmarx has disclosed that its ongoing investigation tied to the supply chain security incident has revealed that a cybercriminal group published data related to the company on the dark web. "Based on current evidence, we believe this data originated from Checkmarx's GitHub rep…
Everything is dumb again. This week feels broken in a very familiar way. Old tricks are back. New tools are doing shady crap. Supply chains got hit. Fake help desks worked. Weird research showed how easy some attacks still are. Most of it feels like stuff we should have fixed yea…
Researchers have uncovered a malware framework dubbed "fast16" that predates Stuxnet by 5 years.
Three seconds of audio is all it takes to clone a voice for fraud. Adaptive Security shows how deepfake calls trick employees into sending real money—and why most defenses don't catch them. [...]
Some fear frontier LLMs like Claude Mythos and Anthropic's GPT-5.5 will lead to cybersecurity annihilation. Ari Herbert-Voss notes this could be an opportunity.
O furto de celulares ganhou uma nova cara em São Paulo: de acordo com uma reportagem da Folha de S. Paulo, um grupo criminoso que se intitula “gangue do 55” está registrando a realização dos próprios furtos para publicar os vídeos nas redes sociais, como o Instagram. Pix e QR …
UNC6692 hackers exploit Microsoft Teams with fake IT alerts to deploy SNOW malware, steal credentials, and breach corporate networks in advanced attacks.
A pro-Ukrainian hacktivist group called PhantomCore has been attributed to attacks actively targeting servers running TrueConf video conferencing software in Russia since September 2025. That's according to a report published by Positive Technologies, which found the threat actor…