Tag: hacking
-
New GhostShell Hacking Group Targets Ukraine’s Drone Defense Sector
Researchers warn GhostShell is using fake drone documents to target Ukrainian defence teams, stealing passwords and sensitive data in a new cyber campaign. First seen on hackread.com Jump to article: hackread.com/ghostshell-hacking-group-ukraine-drone-defense-sector/
-
Five Eyes Warn the Frontier AI Cyberthreat Is Months Away
Allied Cyber Agencies Urge Leaders to Act Now as Frontier Models Reshape Risk. A rare joint statement from the Five Eyes cyber agencies is warning that frontier artificial intelligence will transform offensive hacking in just a matter of months – not years – while pressing leaders to treat cyber resilience as a core business risk.…
-
2 British Men Plead Guilty to Transport for London Hacks
Members of Scattered Spider Group Admit Disrupting London Underground Operator. Two young Englishmen pleaded guilty to hacking London Underground operator Transport for London. The 2024 attack by the Scattered Spider cybercrime group members Thalha Jubair, 20, and Owen Flowers, 18, led to $38 million in losses and recovery costs. First seen on govinfosecurity.com Jump to…
-
Scattered Spider members plead guilty to hacking Transport for London
Two members of the ‘Scattered Spider’ cybercrime group pleaded guilty to hacking the Transport for London (TfL) systems in 2024. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/scattered-spider-members-plead-guilty-to-hacking-transport-for-london/
-
Scattered Spider Teens Convicted of TfL Cyber-Attack
Two young British men have pleaded guilty to hacking Transport for London as part of a Scattered Spider plot First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/scattered-spider-teens-convicted/
-
Two Britons plead guilty to £39m 2024 cyber-attack on Transport for London
Thalha Jubair and Owen Flowers, linked to the Scattered Spider hacking group, change pleas on first day of expected six-week trial Two British cybercriminals linked to the Scattered Spider hacking group have pleaded guilty to a <a href=”https://www.theguardian.com/uk-news/article/2024/sep/02/transport-for-london-dealing-with-cyber-attack”>cyber-attack on Transport for London in 2024 that cost £39m and affected 10 million people.Thalha Jubair, 20, and…
-
Microsoft links Mastra AI supply chain attack to North Korean hackers
Microsoft has attributed a recent Mastra AI supply chain attack that compromised more than 140 npm packages to the North Korean hacking group Sapphire Sleet, also known as BlueNoroff. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-links-mastra-ai-supply-chain-attack-to-north-korean-hackers/
-
FIFA World Cup 2026: Hackers Target Football Fans With Fake Tickets Sites
Cybersecurity experts warn that active hacking networks are using fake hotel bookings, cloned websites, and live chat features to scam FIFA World Cup 2026 fans. First seen on hackread.com Jump to article: hackread.com/fifa-world-cup-2026-hackers-football-fake-tickets-sites/
-
Experts Warn of ‘Mismatch’ in US Response to OT Hacking
Cross Sector Dependencies in OT Hinders Attack Response. A cyberattack of any significant scale against operational technology in America’s vital infrastructure and services would almost immediately overwhelm the online and offline resources available to responders, experts said this week. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/experts-warn-mismatch-in-us-response-to-ot-hacking-a-32026
-
Cyberspace Locked in a Nation-State Contest, Says NCSC CEO
Richard Horne Seeks to Reframe Discussion of Cyber Exposure. Britain’s top cybersecurity official sought Wednesday to reframe digital defense as a contest against a constantly shifting opponent rather than a risk to be managed, calling today’s spate of breaches and hacking incidents the opening salvos of a future war. First seen on govinfosecurity.com Jump to…
-
Dangerous AI models are coming no matter what
AI models with advanced hacking capabilities will soon be the norm. First seen on arstechnica.com Jump to article: arstechnica.com/ai/2026/06/dangerous-ai-models-are-coming-no-matter-what/
-
Nintendo: Kriminelle verlangen 2 Millionen Dollar Lösegeld für gestohlene Daten
Tags: hackingDie Hacking-Gruppe hat allerdings einen Fehler gemacht und so im Prinzip ihre Drohungen gegen Nintendo entwertet. First seen on golem.de Jump to article: www.golem.de/news/nintendo-kriminelle-verlangen-2-millionen-dollar-loesegeld-fuer-gestohlene-daten-2606-209865.html
-
‘Dangerous’ AI Models Are Coming No Matter What
The US government crackdown on Anthropic’s Claude Fable 5 and Mythos 5 hides a glaring truth: AI models with advanced hacking capabilities will soon be the norm. First seen on wired.com Jump to article: www.wired.com/story/dangerous-ai-models-are-coming-no-matter-what/
-
Chinese Hacking Firm Upgrades With New Windows Backdoor
Researchers Identified Two Undocumented Variants Used Since 2023. Eset uncovered two previously undocumented Windows variants of the China-linked SprySocks backdoor tied to FishMonger and iSoon, revealing expanded espionage capabilities, rootkit-based stealth and continued targeting of government organizations across Asia and Central America. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/chinese-hacking-firm-upgrades-new-windows-backdoor-a-31977
-
Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware
The North Korean state-sponsored hacking group known as ScarCruft (aka APT37) has been observed using spear-phishing messages impersonating Microsoft Account security notifications to deliver malware called NarwhalRAT.”The attack email contained a message impersonating an MS account security alert,” the Genians Security Center (GSC) said. “It was designed to create concern over possible First seen on…
-
Labcorp Agrees to Pay $35M to Settle AMCA Data Breach
Diagnostics Lab Reported 10.3M Patients Affected by Collection Agency’s Hack. Medical laboratory testing giant Labcorp has agreed to pay $35 million to settle class action litigation stemming from a 2018 hacking incident on now-defunct American Medical Collections Agency. Labcorp reported the vendor breach in 2019 as affecting nearly 10.3 million patients. First seen on govinfosecurity.com…
-
Cybersecurity experts don’t think Anthropic’s Fable 5 presents a unique threat
Dozens of practitioners said the decision to place export controls on the foreign use of Fable are misguided, and recent jailbreak reports don’t show the model providing unique hacking capabilities. First seen on cyberscoop.com Jump to article: cyberscoop.com/cybersecurity-experts-anthropic-fable-5-not-unique-ai-threat/
-
Cybersecurity experts don’t think Anthropic’s Fable 5 presents a unique cybersecurity threat
Dozens of practitioners said the decision to place export controls on the foreign use of Fable are misguided, and recent jailbreak reports don’t show the model providing unique hacking capabilities. First seen on cyberscoop.com Jump to article: cyberscoop.com/cybersecurity-experts-anthropic-fable-5-not-unique-ai-threat/
-
Handala Hacking Group Claims Breach of California Water Service
The Handala hacking group claims it has targeted California Water Service, leaking 5GB of customer database and GPS network files in its latest infrastructure attack. First seen on hackread.com Jump to article: hackread.com/handala-hacking-group-california-water-service-breach/
-
Oracle warns of security bug that hackers abused to breach 100+ companies
The tech giant warned of a security flaw that a cybercrime gang said it’s exploiting as part of a mass-hacking campaign. Google said it notified more than 100 organizations that had potentially vulnerable servers. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/11/oracle-warns-of-security-bug-that-hackers-abused-to-breach-100-companies/
-
JDY Botnet Evolves After KV Takedown, Targets Military Networks
JDY botnet scans SOHO/IoT devices globally to map services and targets, especially US military networks. Lumen’s Black Lotus Labs reported the resurgence of the JDY botnet, a covert reconnaissance network tied to Chinese state-sponsored hacking groups including Volt Typhoon. The network was first spotted in late 2023 as a cluster inside KV-botnet. The U.S. government…
-
Nottingham University data breach affects over 450,000 students
The University of Nottingham confirmed on Wednesday that a hacking group gained access to its student records system in a breach affecting both current students and alums. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/nottingham-university-data-breach-affects-over-450-000-students/
-
Cybercriminals claim breach of Oracle PeopleSoft servers at 100-plus organizations
The ShinyHunters hacking gang claims to have compromised the Oracle PeopleSoft servers of more than 100 organizations, including many universities. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/10/cybercriminals-claim-breach-of-oracle-peoplesoft-servers-at-100-plus-organizations/
-
VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances
A China-nexus cyber espionage group has been observed deploying a BSD variant of a known backdoor called BRICKSTORM, as well as two other malware families codenamed PLENET (aka GRIMBOLT) and AGENTPSD to target Linux systems.The activity has been attributed by Volexity to a threat cluster it tracks as VerdantBamboo, which it said overlaps with hacking…
-
Hacked, leaked, and held for ransom: the worst breaches of 2026 so far
From a massive DOGE data breach and the hacking of critical energy and water systems to the hack of an FBI surveillance system, here are the most damaging security incidents and data breaches of 2026. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/07/the-worst-hacks-and-breaches-of-2026-so-far/
-
Hackers Are After the Gaps in Your Vulnerability Program: Here’s Their Playbook
Threat actors are actively teaching newcomers how to find, exploit, and profit from vulnerable systems. Flare explores what a popular underground hacking tutorial reveals about modern attacker workflows. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-are-after-the-gaps-in-your-vulnerability-program-heres-their-playbook/
-
The worst hacks and breaches of 2026 (so far)
From a massive DOGE data breach and the hacking of critical energy and water systems to the hack of an FBI surveillance system, here are the most damaging security incidents and data breaches of 2026. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/03/the-worst-hacks-and-breaches-of-2026-so-far/
-
Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine
The Russian hacking group known as Gamaredon has been attributed to the continued exploitation of a WinRAR vulnerability to deliver multiple malware families aimed at data theft and propagation.Per Sekoia, the activity involves the weaponization of CVE-2025-8088, a path traversal flaw in WinRAR, to launch an HTML Application payload dubbed GammaPhish, which is then used…
-
Afghan finance officials targeted by suspected Pakistani cyberespionage campaign
A suspected Pakistan-linked hacking group has targeted Afghanistan’s Ministry of Finance and provincial government officials in a new cyberespionage campaign, researchers have found. First seen on therecord.media Jump to article: therecord.media/afghan-officials-targeted-by-sidecopy