1+ hour, 18+ min ago  (447+ words) Upon detection, KDDI'implemented immediate technical countermeasures, including blocking the attacker and modifying the affected system to prevent further damage. The company also began a coordinated response with the affected ISPs and notified Japan's Personal Information Protection Commission and the Ministry…...

1+ hour, 18+ min ago  (266+ words) Active Phishing Campaign Exploits Calendly and Photo ZIP Files to Target Hotels with Node. js Malware " Microsoft Alerts Hospitality Sector Rescana The threat actors behind this campaign remain unattributed as of June 2026. Their operational sophistication is evidenced by the use…...

4+ day, 12+ min ago  (619+ words) Rescana Forti Bleed Credential Harvesting Campaign: Active Exploitation of Forti Gate Firewalls Compromises Over 110 Million Credentials The Forti Bleed campaign represents a highly sophisticated, large-scale credential harvesting operation targeting Forti Gate firewalls globally. Since early 2026, a Russian-speaking, financially motivated Initial…...

3+ week, 3+ day ago  (576+ words) Rescana Active Exploitation Alert: Fake Open-Source Software Sites Dominate Google Search to Distribute Malware via Advanced TDS A sophisticated and rapidly evolving cybercriminal campaign is exploiting the trust in open-source and freeware tools by deploying fake websites that closely mimic…...

3+ week, 3+ day ago  (409+ words) Attribution remains unconfirmed. The operation used public tools, legitimate cloud infrastructure, and did not reuse infrastructure tied to known groups, making technical attribution difficult. However, the target profile, dwell time, and operational discipline strongly suggest a state-linked actor. No direct…...

1+ mon, 20+ hour ago  (723+ words) Rescana Active Exploitation Alert: GPU Mining Malware Targeting Windows Systems via SEO Poisoning and AI Chatbot Recommendations A new wave of cryptojacking attacks is leveraging both SEO poisoning and AI chatbot manipulation to distribute GPU mining malware at scale. This…...

1+ mon, 21+ hour ago  (363+ words) The malware's configuration is highly modular, enabling dynamic targeting of specific banks such as Abanca, Banco de Portugal, BBVA PT, Caixa Geral Depositos, Santander, Revolut, and Wise. It is capable of real-time web injection, credential harvesting, and session hijacking, allowing…...

1+ mon, 4+ day ago  (341+ words) First VPN'accepted payments via Bitcoin, Perfect Money, Webmoney, Ego Pay, and Inter Kass, with subscription durations ranging from one day ($2) to one year ($483). Technical support was provided through a self-hosted Jabber server and encrypted Telegram messaging (The Hacker News). The…...

1+ mon, 2+ week ago  (373+ words) There is no evidence of impact to NVIDIA's operations in other countries managed by GFN. am, such as Azerbaijan, Georgia, Kazakhstan, Moldova, Ukraine, or Uzbekistan. The breach is confined to Armenian users, and no spillover to other sectors or geographies…...

1+ mon, 4+ week ago  (227+ words) From a MITRE ATT&CK perspective, the campaign leveraged techniques including T1566. 001 (Phishing: Spearphishing Attachment), T1190 (Exploit Public-Facing Application), and T1589 (Gather Victim Identity Information). The attackers" use of breached data for targeting, combined with sophisticated email and web spoofing, reflects a mature…...