Common Crypto Scams and How to Protect Your Funds in 2026

Crypto scams are surging worldwide, from pig butchering to fake trading platforms and deepfakes, draining victims while fraud teams struggle to keep up...

macOS Users Hit by Python Infostealers Posing as AI Installers

Microsoft details 3 Python Infostealers hitting macOS users via fake AI tools, Google ads, and Terminal tricks to steal passwords and crypto, then erase traces...

Sanctioned Bulletproof Host Linked to Hijacking of Old Home Routers

Compromised home routers in 30+ countries had DNS traffic redirected, sending users to malicious sites while normal browsing appeared unaffected...

Top AI Tools for Red Teaming in 2026

Red teaming has undergone a radical evolution. Modern organizations can no longer rely solely on human creativity or…...

Chinese Mustang Panda Used Fake Diplomatic Briefings to Spy on Officials

A new spy campaign by Mustang Panda uses fake US diplomatic briefings to target government officials. Discover how this silent surveillance operation works...

MomentProof Deploys Patented Digital Asset Protection

Washington, DC, 4th February 2026, CyberNewsWire...

Exposed AWS Credentials Lead to AI-Assisted Cloud Breach in 8 Minutes

Researchers recently tracked a high-speed cloud attack where an intruder gained full admin access in just eight minutes. Discover how AI automation and a simple storage error led to a major security breach...

Phishing Campaigns Abuse Trusted Cloud Platforms, Raising New Risks for Enterprises

ANY.RUN experts report a surge in phishing campaigns abusing trusted cloud and CDN platforms to bypass security controls and target enterprise users...

One Identity Appoints Gihan Munasinghe as Chief Technology Officer

Alisa Viejo, United States, 4th February 2026, CyberNewsWire...

Op Neusploit: Russian APT28 Uses Microsoft Office Flaw in Malware Attacks

A new campaign by the Russian-linked group APT28, called Op Neusploit, exploits a Microsoft Office flaw to steal emails for remote control of devices in Ukraine, Slovakia, and Romania...

Meet Moltbook, the Social Platform Where AI Agents Talk and Humans Watch

Moltbook is a new social platform where AI agents post and interact while humans observe, raising questions about autonomy, security, and agent behavior...

Everest Ransomware Claims 90GB Data Theft Involving Legacy Polycom Systems

Everest ransomware claims a breach involving legacy Polycom systems later acquired by HP Inc., alleging the theft of 90GB of internal data...

Phishing Scam Uses Clean Emails and PDFs to Steal Dropbox Logins

A multi-stage phishing campaign is targeting business users by exploiting Vercel cloud storage, PDF attachments, and Telegram bots to steal Dropbox credentials...

Notepad++ Updates Delivered Malware After Hosting Provider Breach

A months-long breach allowed Chinese State-sponsored hackers to hijack Notepad++ updates in 2025, exposing users to malware via a compromised hosting provider...

Ivanti Issues Urgent Fix for Critical Zero-Day Flaws Under Active Attack

Ivanti has disclosed two critical remote code execution RCE flaws CVE-2026-1281 & CVE-2026-1340 in its EPMM software...

Spotify and Major Music Labels Sue Anna’s Archive for $13 Trillion

Spotify and the Big Three labels have filed a record-breaking $13 trillion lawsuit against Anna’s Archive over a massive music data scrape. Find out what this means for the future of digital music...

Windows Malware Uses Pulsar RAT for Live Chats While Stealing Data

We usually think of computer viruses as silent, invisible programs running in the background, but a worrying discovery shows that modern hackers are getting much more personal...

US Seizes $400 Million Linked to Helix Dark Web Crypto Mixer

US authorities take control of over $400 million in crypto, cash, and property tied to Helix, a major darknet bitcoin mixing service used by drug markets...

Former Google Engineer Convicted of Stealing AI Secrets for China

A 38 year old was convicted on seven counts of economic espionage and seven counts of theft of trade secrets following an 11 day trial...

Arsink Spyware Posing as WhatsApp, YouTube, Instagram, TikTok Hits 143 Countries

Another day, another Android malware campaign targeting unsuspecting users worldwide by masquerading as popular apps...

Common Cloud Migration Security Mistakes (and How to Avoid Them)

Common cloud migration security mistakes explained, from weak access controls to misconfigurations, plus practical steps organisations can take to avoid risk...

Op Bizarre Bazaar: New LLMjacking Campaign Targets Unprotected Models

Pillar Security Research has discovered Operation Bizarre Bazaar, a massive cyberattack campaign led by a hacker known as Hecker. Between December 2025 and January 2026, over 35,000 sessions were recorded targeting AI systems to steal compute power and resell access via silver.inc...

This startup aims to solve crypto’s broken key management problem

Crypto security firm Sodot launches Exchange API Vault to stop API key theft, securing billions in assets while supporting low latency, high frequency trading...

US Sentences Chinese National for Role in $36.9 Million Crypto Scam

A Chinese national has been sentenced for his role in a massive $36.9 million cryptocurrency scam operated from…...

Malicious Google Ads Target Mac Users with Fake Mac Cleaner Pages

Mac users searching for software on Google or other search engines should be extra careful...

Russian Cybercrime Platform RAMP Forum Seized by FBI

US authorities have seized the RAMP cybercrime forum, taking down both its clearnet and dark web domains in a major hit to the ransomware infrastructure...

Why RAMS Software Is Becoming Essential for Construction Safety and Compliance

Digital RAMS software helps construction teams manage risk assessments, method statements, and safety compliance across sites with real-time access...

Hackers Still Using Patched WinRAR Flaw for Malware Drops, Warns Google

The Google Threat Intelligence Group GTIG warns that nation-state actors and financially motivated threat actors are exploiting a…...

GoTo Resolve Tool’s Background Activities Compared to Ransomware Tactics

New research from Point Wild’s Lat61 team reveals how the HEURRemoteAdmin.GoToResolve.gen tool allows silent, unattended access to PCs. Learn why this legitimate remote administration software is being flagged as a security risk and its surprising connection to ransomware tactics...

Best IT Managed Services for Large Enterprises

Learn what defines top-tier enterprise managed IT services, why they matter, and how Mindcore Technologies meets large-scale business demands...

Phantom Malware in Android Game Mods Hijacks Devices for Ad Fraud

Another day, another Android malware strain. This time, Phantom malware aka Android.Phantom is targeting users who install third-party gaming apps from unofficial sources...

16 Fake ChatGPT Extensions Caught Hijacking User Accounts

A coordinated campaign of 16 malicious GPT optimisers has been caught hijacking ChatGPT accounts. These tools steal session tokens to access private chats, Slack, and Google Drive files...

ShinyHunters Target 100+ Firms Using Phone Calls to Bypass SSO Security

ShinyHunters is driving attacks on 100+ organisations, using vishing and fake login pages with allied groups to bypass SSO and steal company data, reports Silent Push...

US Charges 31 Suspects in Nationwide ATM Jackpotting Scam

US prosecutors have charged 31 more suspects in a nationwide ATM jackpotting scam, bringing the total number of defendants to 87 across multiple states...

Poland Thwarts Russian Wiper Malware Attack on Power Plants

Poland blocked a Russian wiper malware attack on power and heating plants, officials say, avoiding outages during winter and prompting tighter cyber rules...

Fake Microsoft Teams Billing Phishing Alerts Reach 6,135 Users via 12,866 Emails

Scammers are abusing Microsoft Teams invitations to send fake billing notices, with 12,866 emails reaching around 6,135 users in a phone-based phishing campaign...

Nike Data Breach Claims Surface as WorldLeaks Leaks 1.4TB of Files Online

As users continue to assess the Under Armour data breach, WorldLeaks, the rebranded version of the Hunters International…...

New Fake CAPTCHA Scam Abuses Microsoft Tools to Install Amatera Stealer

Another day, another fake CAPTCHA scam, but this one abuses Microsoft’s signed tools...

$6,000 “Stanley” Toolkit Sold on Russian Forums Fakes Secure URLs in Chrome

Say hello to Stanley, a new malicious toolkit that guarantees bypassing Google’s Chrome Web Store review process...

7 Top Endpoint Security Platforms for 2026

Endpoints remain primary entry for attacks. In 2026, endpoint platforms must deliver behavior context, automation, investigations, and integrations...

FBI Accessed Windows Laptops After Microsoft Shared BitLocker Recovery Keys

If you are using a Windows PC, your privacy and security are nothing short of a myth, and this incident proves it...

149M Logins from Roblox, TikTok, Netflix, Crypto Wallets Found Online

Another day, another trove of login credentials in plain text found online...

Venezuelan Nationals Face Deportation After Multi State ATM Jackpotting Scheme

According to authorities, both suspects were in the United States unlawfully...

Halo Security Achieves SOC 2 Type II Compliance, Demonstrating Sustained Security Excellence Over Time

Halo Security, a leading provider of external attack surface management and penetration testing services, today announced it has…...

ShinyHunters Leak Alleged Data of Millions From SoundCloud, Crunchbase and Betterment

ShinyHunters claim more data breaches and leaks are coming soon!...

Google to Pay $8.25M Settlement Over Child Data Tracking in Play Store

Is your child's data safe? Google settles for $8.25M over claims it tracked kids under 13 without parental…...

Hackers Are Using LinkedIn DMs and PDF Tools to Deploy Trojans

That LinkedIn message pretending to be job offer could just be malwre...

VoidLink Malware Puts Cloud Systems on High Alert With Custom Built Attacks

Sysdig TRT analysis reveals VoidLink as a revolutionary Linux threat. Using Serverside Rootkit Compilation and Zig code, it targets AWS and Azure with adaptive stealth...

Iranian TV Transmission Hacked With Message from Exiled Prince

Unidentified hackers disrupted Iranian state television to broadcast messages from exiled Crown Prince Reza Pahlavi. Read about the economic crisis, the internet blackout, and the latest reports on the protest death toll...

New Research Exposes Critical Gap: 64% of Third-Party Applications Access Sensitive Data Without Authorization

Boston, MA, USA, 21st January 2026, CyberNewsWire...