SC Media
20 articles
Windows 11 update KB5089549 causes installation errors due to low EFI partition space
The installation failure occurs when the EFI System Partition has 10 MB or less of available space.
Malaysian government-linked campaign used hidden infrastructure for years
The operation, believed to be a long-term espionage effort, has maintained its command and control infrastructure for several years by employing sophisticate...
Mate Security introduces continuous detection and response model
Mate Security's CD/CR model addresses the fragmentation in current security operations, where detection and investigation are often siloed.
Ransomware group 'The Gentlemen' suffers internal breach, exposing operations
Researchers at Check Point Research (CPR) gained visibility into The Gentlemen's backend infrastructure, affiliate activities, and victim management tools af...
Interpol operation leads to 201 arrests in Middle East and North Africa cybercrime crackdown
Operation Ramz, the first of its kind in the region, targeted phishing services, malware, and scams over a four-month period, identifying 382 suspects and ne...
Spotify outage caused by DDoS attack claimed by hacking group
The Islamic Cyber Resistance in Iraq-313 Team has claimed responsibility for the widespread disruption, stating they launched a distributed denial of service...
Critical bug in F5 NGINX actively exploited
Experts raise concerns because NGINX runs in front of one-third of al website worldwide.
Tycoon2FA phishing kit evolves with device-code attacks on Microsoft 365
The Tycoon2FA phishing kit has adapted to leverage OAuth 2.0 device authorization grant flows, enabling it to compromise Microsoft 365 accounts.
Grafana Labs discloses GitHub environment breach, source code downloaded
The breach occurred after a threat actor obtained a compromised token.
Consumers face increasing online scams, as AI fuels sophisticated attacks
F-Secure's Scam Intelligence & Impacts Report reveals that 56% of consumers faced monthly scam attempts in 2025.
Stolen UK data, including bank cards and IDs, is cheap on the dark web, NordVPN reports
Stolen UK payment card details are commonly available on dark web marketplaces for approximately $12, with comprehensive digital identity packs fetching arou...
Researcher claims Microsoft silently patched Azure Backup for AKS vulnerability
The vulnerability reportedly discovered by Justin O'Leary allowed users with only the "Backup Contributor" role to gain cluster-admin privileges within Kuber...
FIFA World Cup scams target fans and businesses
Cybercriminals are using fake ticketing, accommodation, and transportation apps to trick fans into divulging login credentials or losing money.
4 vulnerabilities in OpenClaw AI agent put thousands of servers at risk
The vulnerabilities, collectively known as Claw Chain, were found by security experts at Cyera and affect all versions of OpenClaw released before April 23, ...
Thousands of Yarbo robotic lawnmowers exposed with identical default passwords
Security researcher Andreas Makris discovered that Yarbo robotic lawnmowers, which operate in over 30 countries and are equipped with cameras, GPS, and AI ma...
REMUS infostealer evolves into sophisticated malware-as-a-service platform
Flare's analysis of 128 posts between February and May 2026 reveals REMUS's aggressive development cycle, mirroring structured software businesses.
Hackers exploit calendar invites to hijack accounts using CalPhishing
The CalPhishing campaign, active since early 2026, begins with an email appearing to be an urgent administrative alert.
Hotel check-in system exposed over 1 million customer passports
The exposed data belonged to users of Tabiq, a system maintained by Japanese tech startup Reqrea that utilizes facial recognition and document scanning for h...
Turla group evolves Kazuar backdoor into modular P2P botnet
Turla, also known as Secret Blizzard and linked to Russia's FSB, has re-engineered its Kazuar .NET backdoor, first used in 2017, into a modular botnet.