Tag: theft

Fake Ledger Live App on Apple Store Linked to $9.5M Crypto Theft

Apr 17, 2026 12:48 AM

Tags: apple, crypto, scam, theft

Apple approved a fake Ledger Live app on its App Store, allowing scammers to steal $9.5 million from more than 50 users. Did you install this app? First seen on hackread.com Jump to article: hackread.com/fake-ledger-live-app-apple-store-crypto-theft/
US, UK and Canada disrupt $45M crypto theft in Operation Atlantic

Apr 14, 2026 4:52 PM

Tags: breach, crypto, international, law, theft

US, UK and Canada ran Operation Atlantic, uncovering $45M in crypto theft and freezing $12M to return to victims. An international law enforcement operation from the US, UK and Canada, codenamed Operation Atlantic, has targeted large-scale cryptocurrency theft schemes. Authorities identified more than $45 million in stolen digital assets and successfully froze around $12 million.…
Q1 2026 Open Source Malware Index: Adaptive Attacks, Familiar Weaknesses

Apr 14, 2026 2:51 PM

Tags: access, ai, api, attack, automation, cloud, credentials, crypto, data, github, guide, intelligence, kubernetes, linux, macOS, malicious, malware, open-source, pypi, risk, software, supply-chain, tactics, theft, tool, update, windows, worm

<div cla TL;DR Sonatype identified 21,764 open source malware packages in Q1 2026, bringing the total logged since 2017 to 1,346,867. npm accounted for 75% of malicious packages this quarter. Trojans dominated, with most activity focused on credential theft, host reconnaissance, and staged payload delivery. The quarter’s defining pattern was trust abuse: attackers succeeded by…
APT41 Targets Linux Cloud Servers With New Winnti Backdoor

Apr 14, 2026 8:52 AM

Tags: backdoor, china, cloud, control, credentials, cyber, detection, linux, theft, threat

A previously undocumented Linux backdoor attributed to China-linked threat group APT41 (Winnti) has been uncovered, targeting cloud workloads across AWS, GCP, Azure, and Alibaba Cloud. The ELF-based implant, currently showing zero detections on VirusTotal, transforms Linux servers into stealthy credential theft nodes using a novel SMTP-based command-and-control (C2) mechanism. The discovery indicates a new phase in APT41’s Linux and cloud-targeted…
Rockstar Games gets a taste of grand theft data

Apr 13, 2026 8:51 PM

Tags: data, metric, theft, tool

ShinyHunters claims it accessed Snowflake metrics via third-party tool First seen on theregister.com Jump to article: www.theregister.com/2026/04/13/shinyhunters_rockstar_breach/
‘Grand Theft Auto’ publisher Rockstar hit by hackers again

Apr 13, 2026 7:52 PM

Tags: data, hacker, hacking, leak, theft

The notorious ShinyHunters hacking collective menaces video game publisher Rockstar and says it will leak data on 14 April First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366641486/Grand-Theft-Auto-publisher-Rockstar-hit-by-hackers-again
Hacker group threatens to release Grand Theft Auto VI data in Rockstar Games attack

Apr 13, 2026 7:52 PM

Tags: access, attack, breach, cyberattack, data, group, hacker, ransom, theft

The group named ShinyHunters have accessed a third party server and have given the company a deadline of 14 April to enter ransom negotiations Rockstar Games, the studio behind Grand Theft Auto, has been the target of a cyberattack for the second time in three years. A hacker group called ShinyHunters said it would release…
Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

Apr 13, 2026 3:51 PM

Tags: access, advisory, ai, api, attack, authentication, breach, cloud, credentials, cve, data-breach, exploit, firewall, flaw, Internet, open-source, rce, remote-code-execution, software, theft, tool, update, vulnerability

Credentials stolen in under three minutes: To track real-world exploitation, deployed honeypot servers running vulnerable Marimo instances across multiple cloud providers and observed the first exploitation attempt within 9 hours and 41 minutes of disclosure. No ready-made exploit tool existed at the time. The attacker had built one using only the advisory description, Sysdig researchers…
Rockstar Games receives “pay or leak” warning after cyberattack

Apr 13, 2026 2:51 PM

Tags: cyberattack, group, hacking, theft

Rockstar Games, the developer behind titles such as Grand Theft Auto and Red Dead Redemption, has confirmed a cyberattack claimed by hacking group ShinyHunters, which says it … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/13/rockstar-games-data-breach-shinyhunters/
Rockstar Games gets a taste of grand theft data amid ShinyHunters threat of ‘Pay or leak’

Apr 13, 2026 1:52 PM

Tags: data, leak, metric, theft, threat, tool

Gang claims it accessed Snowflake metrics via third-party tool First seen on theregister.com Jump to article: www.theregister.com/2026/04/13/shinyhunters_rockstar_breach/
Rockstar Cyberattack Confirmed; ShinyHunters Claims Breach, Issues Extortion Threat

Apr 13, 2026 8:52 AM

Tags: access, breach, cyberattack, extortion, theft, threat, unauthorized, vulnerability

Rockstar Games has confirmed a new security breach involving unauthorized access to internal data. The company behind GTA 5 and the Grand Theft Auto franchise acknowledged that the Rockstar cyberattack stemmed from a third-party vulnerability, though it maintains the impact is limited. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/rockstar-cyberattack-gta-5/
7 Privilege Management Mistakes That Put Business Data at Risk

Apr 13, 2026 6:52 AM

Tags: access, api, attack, authentication, breach, business, control, credentials, cyber, cybersecurity, dark-web, data, data-breach, detection, email, exploit, extortion, finance, github, governance, government, hacker, ibm, identity, infrastructure, insurance, ISO-27001, jobs, least-privilege, login, mfa, microsoft, monitoring, network, okta, password, privacy, radius, ransomware, regulation, risk, russia, scam, service, software, supply-chain, theft, threat, tool, unauthorized, usa, vpn, vulnerability, zero-trust

Every growing business has at least one lingering privilege management issue. It’s not because your team is lazy. It’s because organizations grow, restructure and hire far faster than manual access processes can keep up. When roles evolve or contractors come and go, permissions accumulate behind the scenes”, creating invisible attack paths. In this post, we…
7 Privilege Management Mistakes That Put Business Data at Risk

Apr 13, 2026 6:52 AM

Tags: access, api, attack, authentication, breach, business, control, credentials, cyber, cybersecurity, dark-web, data, data-breach, detection, email, exploit, extortion, finance, github, governance, government, hacker, ibm, identity, infrastructure, insurance, ISO-27001, jobs, least-privilege, login, mfa, microsoft, monitoring, network, okta, password, privacy, radius, ransomware, regulation, risk, russia, scam, service, software, supply-chain, theft, threat, tool, unauthorized, usa, vpn, vulnerability, zero-trust

Every growing business has at least one lingering privilege management issue. It’s not because your team is lazy. It’s because organizations grow, restructure and hire far faster than manual access processes can keep up. When roles evolve or contractors come and go, permissions accumulate behind the scenes”, creating invisible attack paths. In this post, we…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 92

Apr 12, 2026 3:51 PM

Tags: backdoor, hacker, international, malicious, malware, rce, remote-code-execution, theft

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Thirty-Six Malicious npm Strapi Packages Deploy Redis RCE, Database Theft, and Persistent C2 Malicious LNK Files Distributing a Python-Based Backdoor and Changes in Distribution Techniques (Kimsuky Group) Hackers Are Attempting to Turn ComfyUI Servers Into a…
Google Chrome Update Disrupts Infostealer Cookie Theft

Apr 11, 2026 2:52 PM

Tags: breach, browser, chrome, credentials, google, Hardware, theft, update

Google adds Device Bound Session Credentials (DBSC) to Chrome 146, using hardware keys to block infostealer use of stolen session cookies on Windows. First seen on hackread.com Jump to article: hackread.com/google-chrome-update-infostealer-cookie-theft/
Google Locks Chrome Sessions to Devices to Stop Cookie Theft

Apr 11, 2026 11:51 AM

Tags: browser, chrome, credentials, cyber, google, macOS, malware, mfa, password, theft, windows

Google has officially launched a major security upgrade to protect users from session hijacking. Starting with Chrome version 146 for Windows users, Device Bound Session Credentials (DBSC) is now publicly available. This new feature aims to stop malware from stealing web cookies and using them to bypass passwords and multi-factor authentication. Support for macOS users…
RaaS Gang Anubis Claims Signature Healthcare Data Theft

Apr 11, 2026 12:53 AM

Tags: attack, data, group, healthcare, ransomware, theft

Attackers Allege They Stole 2TBs of Patient Data, But Didn’t Encrypt IT System. Ransomware group Anubis claimed it stole 2 terabytes of patient data in an attack this week on Signature Healthcare. The Massachusetts health system is still diverting ambulance patients from its hospital and using paper charts while it continues to recover. First seen…
‘It reads like a spy novel’: $280 million theft from Drift involved North Korean fake companies, cutouts

Apr 10, 2026 8:52 PM

Tags: conference, crypto, north-korea, spy, theft

Drift officials said the operation began six months ago, when they were approached at a cryptocurrency conference by members of a company claiming to focus on quantitative trading. First seen on therecord.media Jump to article: therecord.media/drift-crypto-theft-post-mortem-north-korea
EngageSDK Vulnerability puts millions of crypto wallets at risk

Apr 10, 2026 4:53 PM

Tags: android, crypto, cyber, data, risk, theft, unauthorized, vulnerability

A newly disclosed vulnerability in the widely used Android library EngageSDK has raised serious concerns across the cryptocurrency ecosystem, potentially exposing millions of users to data theft and unauthorized access. Security researchers identified a critical “intent redirection” vulnerability in EngageSDK, a third-party Android SDK commonly used for push notifications and in-app messaging. The issue allows…
Alleged 10 Petabyte Data Theft From China’s Tianjin Supercomputing Hub

Apr 10, 2026 3:52 PM

Tags: china, data, data-breach, defense, hacker, theft

Hacker claims a 10 petabyte data theft from China’s Tianjin Supercomputing Center, raising concerns over exposed defense-related data. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/alleged-10-petabyte-data-theft-from-chinas-tianjin-supercomputing-hub/
To counter cookie theft, Chrome ships device-bound session credentials

Apr 10, 2026 11:53 AM

Tags: authentication, browser, chrome, credentials, malware, theft

Cookie theft follows a well-established pattern. Infostealer malware infiltrates a device, extracts authentication cookies, and exfiltrates them to an attacker-controlled … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/10/google-chrome-device-bound-session-credentials/
HPE Aruba Private 5G Vulnerability Opens Door to Credential Theft Attacks

Apr 10, 2026 11:53 AM

Tags: 5G, attack, credentials, cve, cyber, flaw, login, network, risk, theft, threat, vulnerability

A newly disclosed security flaw in HPE Aruba Networking Private 5G Core On-Prem is putting enterprise networks at severe risk of credential theft. Documented under the security bulletin HPESBNW05032EN_US, this vulnerability targets the platform’s graphical user interface and allows threat actors to silently harvest administrative login details. The security defect, officially tracked as CVE-2026-23818, stems…
Bitcoin Depot hack leads to $3.6M Bitcoin theft via stolen credentials

Apr 10, 2026 10:51 AM

Tags: breach, credentials, hacker, login, theft

Hackers breached Bitcoin Depot, stole credentials, and took about 50 BTC worth $3.6M from its wallets after a March 23 intrusion. Hackers breached the largest US Bitcoin ATM operator, Bitcoin Depot, on March 23, stole login credentials, and drained about 50.9 BTC worth $3.6M from company wallets. Bitcoin Depot told the SEC that a hacker…
Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows

Apr 10, 2026 10:51 AM

Tags: browser, chrome, credentials, google, macOS, theft, windows

Google has made Device Bound Session Credentials (DBSC) generally available to all Windows users of its Chrome web browser, months after it began testing the security feature in open beta.The public availability is currently limited to Windows users on Chrome 146, with macOS expansion planned in an upcoming Chrome release.”This project represents a significant First…
Breach Roundup: German Police Expose REvil, GandCrab Boss

Apr 10, 2026 12:52 AM

Tags: ai, attack, breach, data, docker, exploit, flaw, github, hacker, ivanti, ransomware, scam, theft

Also, Medusa Ransomware, Grafana Flaw, German Political Party Breach. This week, German police unmasked a REvil leader, a critical Docker flaw, Medusa ransomware surged, DPRK hackers abused GitHub, Grafana AI bugs enabled data theft, scams hit $20B in the United States, Ivanti exploited and attacks hit Northern Ireland schools and a German political party. First…
Eurail data breach impacted 308,777 people

Apr 9, 2026 11:52 PM

Tags: breach, data, data-breach, hacker, identity, theft, threat

Hackers breached Eurail in Dec 2025, stole names and passport data, and exposed over 300,000 travelers’ personal information. Threat actors breached Eurail in December 2025 and stole names and passport numbers from its network. The company now notifies 308,777 people that attackers exposed their personal data, raising concerns about identity theft and misuse of sensitive…
Google Chrome adds infostealer protection against session cookie theft

Apr 9, 2026 9:52 PM

Tags: browser, chrome, credentials, google, malware, theft, windows

Google has rolled out Device Bound Session Credentials (DBSC) protection in Chrome 146 for Windows, designed to block info-stealing malware from harvesting session cookies. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-chrome-adds-infostealer-protection-against-session-cookie-theft/
Bitcoin Depot Reports $3.6m Crypto Theft After System Breach

Apr 9, 2026 6:53 PM

Tags: attack, breach, crypto, cyber, hacker, theft

Bitcoin Depot has disclosed a cyber-attack that led to the theft of more than 50 Bitcoin, worth $3.66m, after hackers accessed its internal systems First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/bitcoin-depot-dollar36m-crypto/
Cybercriminals target accountants to drain Russian firms’ bank accounts

Apr 9, 2026 12:52 PM

Tags: breach, computer, cybercrime, finance, hacking, russia, theft

Cybercriminals have stolen millions from Russian companies by hacking accountants’ computers and disguising transfers as salary payments, with the largest confirmed theft exceeding 14 million rubles. First seen on therecord.media Jump to article: therecord.media/cybercriminals-hack-russian-accountants-to-steal-millions
China’s Tianjin Supercomputer Center Allegedly Hit in 10-Petabyte Data Theft

Apr 9, 2026 11:52 AM

Tags: breach, china, cyber, data, defense, infrastructure, theft, threat

A threat actor has allegedly executed one of the largest data heists in China’s history, siphoning an astounding 10 petabytes of highly classified information from the National Supercomputing Center (NSCC) in Tianjin. The stolen dataset reportedly includes sensitive defense documents, missile schematics, and advanced aerospace research. The Tianjin center serves as a centralized infrastructure hub…