Kimwolf DDoS Botnet Operator Arrested in Canada Over DDoS-for-Hire Attacks

The U.S. Department of Justice DoJ on Thursday announced the arrest of a Canadian man in connection with allegedly operating a distributed denial-of-service DDoS botnet known as Kimwolf. In tandem, Jacob Butler aka Dort, 23, Ottawa, Canada, has been charged with offenses related to the developmen...

CVE-2026-3039

creationtimestamp| type| source ---|---|--- 2026-05-20 07:42:48+00:00| seen| https://www.acn.gov.it/portale/w/aggiornamenti-per-isc-bind-5 2026-05-20 10:23:00+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/isc-bind-security-advisory-av26-490 2026-05-20 14:15:07+00:00| seen|...

Why Canadian Telecom Providers Are Prime Targets for Cyberattacks

Canadian telecom providers face mounting cyber threats from ransomware, SIM swapping, data breaches, and nation-state attacks targeting critical infrastructure...

CVE-2026-8043

creationtimestamp| type| source ---|---|--- 2026-05-12 08:04:32+00:00| seen| https://www.acn.gov.it/portale/w/ivanti-may-security-update-1 2026-05-12 08:27:11+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/ivanti-security-advisory-av26-450 2026-05-12 16:16:31+00:00| seen|...

CVE-2026-7432

creationtimestamp| type| source ---|---|--- 2026-05-12 08:04:32+00:00| seen| https://www.acn.gov.it/portale/w/ivanti-may-security-update-1 2026-05-12 08:27:11+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/ivanti-security-advisory-av26-450 2026-05-14 02:55:50+00:00| seen|...

DHS Demanded Google Surrender Data on Canadian’s Activity, Location Over Anti-ICE Posts

Using a 1930s trade law, Homeland Security targeted the man—who hasn’t entered the US in more than a decade—following posts on X condemning the killings of Renee Good and Alex Pretti...

Investigating Storm-2755: “Payroll pirate” attacks targeting Canadian employees

In this article 1. Storm-2755’s attack chain 2. Defending against Storm-2755 and AiTM campaigns 3. Microsoft Defender detection and hunting guidance 4. Indicators of compromise Microsoft Incident Response – Detection and Response Team DART researchers observed an emerging, financially motivated...

CVE-2026-22738

creationtimestamp| type| source ---|---|--- 2026-03-26 20:05:49+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/spring-security-advisory-av26-288 2026-03-27 06:00:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116299610793227388 2026-03-27 06:00:31+00:00| seen|...

GHSA-84P4-HCX7-JJ7C

creationtimestamp| type| source ---|---|--- 2026-03-26 18:14:49+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/squid-security-advisory-av26-284...

Canada Needs Nationalized, Public AI

Canada has a choice to make about its artificial intelligence future. The Carney administration is investing $2-billion over five years in its Sovereign AI Compute Strategy. Will any value generated by "sovereign AI" be captured in Canada, making a difference in the lives of Canadians, or is this...

Micro Research MR-GM5L-S1和Micro Research MR-GM5A-L1 代码注入漏洞

Both Micro Research MR-GM5L-S1 and Micro Research MR-GM5A-L1 are embedded industrial communication module devices produced by the Canadian company Micro Research. Both devices have code injection vulnerabilities; these vulnerabilities stem from code injection issues that may allow for the executi...

GHSA-QPQ4-PW7F-PP8W

creationtimestamp| type| source ---|---|--- 2026-02-05 15:56:30+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/n8n-security-advisory-av26-091...

Researchers Null-Route Over 550 Kimwolf and Aisuru Botnet Command Servers

The Black Lotus Labs team at Lumen Technologies said it null-routed traffic to more than 550 command-and-control C2 nodes associated with the AISURU/Kimwolf botnet since early October 2025. AISURU and its Android counterpart, Kimwolf, have emerged as some of the biggest botnets in recent times,...

CVE-2025-12715

CVE-2025-12715 concerns the WordPress plugin Canadian Nutrition Facts Label . It enables a Stored Cross‑Site Scripting (XSS) via the percentage field in the plugin’s Nutrition Label custom post type, affecting all versions up to 3.0. The vulnerability can be exploited by authenticated attackers w...

WordPress Canadian Nutrition Facts Label plugin <= 3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Nutrition Label Custom Post Type vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Nutrition Label Custom Post Type vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Canadian Nutrition Facts Label versions = 3.0...

Canada Fines Cybercrime Friendly Cryptomus $176M

Financial regulators in Canada this week levied $176 million in fines against Cryptomus , a digital payments platform that supports dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services. The penalties for violating Canada's anti money-laundering laws come ten months...

EUVD-2021-13955

Malware in sbrugna...

EUVD-2017-16739

Malware in sbrugna...

Accelerate Crypto Success: Why a Canadian Crypto License Is Your Launchpad to Growth

As the digital asset market matures and regulators worldwide work to set clear standards, one fact has become…...

WinRAR vulnerability exploited by two different groups

On July 30, 2025, WinRAR released a new version 7.13 Final to patch a vulnerability which was used in two separate malware campaigns. WinRAR is a popular file archiving and data compression tool that allows users to compress files into smaller archives, like RAR and ZIP, and can also unpack vario...