BTMOB Android RAT poses significant threat with easy-to-use builder
First identified in February 2025, BTMOB evolved from the SpySolr malware.
SC Media
20 articles
Mass database extortion causes significant damage despite low payment rates
The Ransomnews Research Team's five-year study, spanning from May 2021 to May 2026, analyzed over 65,000 exposed databases, finding that 46.3% contained rans...
UK Visa Portal exposes passport and selfie photos of applicants
An anonymous source alerted TechCrunch to a security lapse on the UK Visa Portal website, stating that at least 100,000 documents, including passports and se...
California amendment would exempt Linux from age verification law
The Linux community had raised concerns that the open-source nature of the software, lacking commercial ownership and centralized account infrastructure, wou...
Iranian threat group targets US aviation sector with AI-assisted ‘MiniFast’ backdoor
Career-themed phishing lures targeted employees of US domestic airlines during Operation Epic Fury.
What Security Leaders Should Expect from RSAC - Joseph Blankenship - BSW #449
Novee launches Agentic Fix to automate vulnerability remediation
Agentic Fix addresses a critical bottleneck in the software development lifecycle where vulnerability discovery has been significantly accelerated, but the s...
Formula 1 fans targeted by evolving scams, Bitdefender warns
Bitdefender's Fan Threat Index highlights four major threats targeting Formula 1 enthusiasts: counterfeit merchandise, fraudulent ticket sales, malicious str...
AppOmni launches Marlin AI for autonomous SaaS security alert investigation
Marlin AI operates within the AppOmni platform, continuously analyzing security indicators across business-critical applications.
7AI Inc. launches PLAID ELITE, an AI-native security operations service
PLAID ELITE handles the entire security operations workflow, including alert ingestion, enrichment, triage, investigation, and response, autonomously.
Fake AI tool websites used to steal developer data
The attack campaign employs SEO poisoning to elevate fake installation pages in search engine results, leading developers searching for AI tools like Google ...
Varonis integrates Claude AI compliance API into Atlas platform
This integration aims to provide organizations with enhanced visibility and oversight for their use of Claude, a tool relied upon for knowledge work, analysi...
ShinyHunters extorts Charter Communications after data breach
The incident came to light after Charter was listed on ShinyHunters' data leak site, where the group claimed to have stolen 40 million records.
Iranian-backed hackers linked to Los Angeles transit system breach
The hacktivist group Ababil of Minab initially claimed responsibility for the breach, stating they had stolen and subsequently deleted data from the Los Ange...
Microsoft Defender for Endpoint to automatically isolate compromised devices
The new feature automatically disconnects compromised endpoints from the network, limiting the risk of further impact while maintaining connectivity to the D...
Cybercriminals increasingly use AI for deepfake-based KYC bypass, report finds
New research from Flashpoint highlights a significant trend where threat actors are not focused on developing novel AI tools but rather on refining existing ...
Dutch government blocks US IT giant's acquisition of cloud provider
The Dutch minister for the digital economy announced a complete prohibition on the acquisition, which would have allowed Kyndryl to purchase Solvinity for an...
Listening, Drupal, TTE, KEV, Mythos, Megalodon, Badanov, MFA, Pope Leo, Aaran Leyland - SWN #584
Drupal bug added to CISA list of known exploited vulnerabilities
Drupal SQL injection flaw CVE-2026-9082 added to CISA KEV as active attacks target sites.
When ransomware shutters the ER, cyber resilience can help teams mitigate the damage
Here’s five ways to implement a cyber resilience plan well before a medical facility experiences a crisis.