A Malware-as-a-Service (MaaS) operation named WeedHack is targeting Minecraft users and allows threat actors to gain remote access to victims’ screens, webcams, and files through a web-based dashboard, McAfee researchers found. Minecraft, developed by Mojang Studios and released in 2011, is one of the best-selling video games of all time, with more than 350 million…
Tag: named
AI, Global Security News, malware
BTMOB Android malware service generates custom phishing payloads
An Android remote access trojan named BTMOB is offered to cybercriminals with a builder interface for generating malware payloads tailored to phishing lures. […]
AI, Data Breaches, Global Security News
GitHub, Grafana Labs breaches traced back to TanStack supply chain compromise
GitHub CISO Alexis Wales has named the malicious VS Code extension behind the breach they suffered at the hands of the threat group TeamPCP: Nx Console, a popular developer tool with 2.2 million installs. A malicious version of the otherwise benign extension was used to steal secrets and developer credentials, which were then used to…
Global Security News
Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit
Microsoft on Tuesday released a mitigation for a BitLocker bypass vulnerability named YellowKey following its public disclosure last week. The zero-day flaw, now tracked as CVE-2026-45585, carries a CVSS score of 6.8. It has been described as a BitLocker security feature bypass. “Microsoft is aware of a security feature bypass vulnerability in Windows publicly referred…
AI, Global Security News
CISA Exposes Secrets, Credentials in ‘Private’ Repo
The agency’s GitHub repository, publicly available since November 2025, was ironically named “Private-CISA.”
AI, Apps, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
OpenClaw Vulnerabilities Could Enable Full AI Agent Takeover
Researchers at Cyera disclosed four chainable vulnerabilities in OpenClaw, collectively named Claw Chain, that could allow attackers to escape AI agent sandboxes, steal credentials, escalate privileges, and establish persistent access across enterprise environments. The findings raise broader concerns about the security risks surrounding autonomous AI agent platforms. “Each step looks like normal agent behavior to…
AI, Exploits, Global Security News
Researchers uncover YellowKey and GreenPlasma Windows Zero-Days
Researchers disclosed two new Windows zero-days named YellowKey and GreenPlasma affecting BitLocker and the CTFMON framework. A security researcher known as Chaotic Eclipse, also called Nightmare-Eclipse, disclosed two new Windows zero-day vulnerabilities named YellowKey and GreenPlasma. The flaws affect BitLocker and the Windows Collaborative Translation Framework (CTFMON). YellowKey could allow attackers to bypass BitLocker protections,…
AI, Global Security News, Network Security, Risk Management
HPE Names TD SYNNEX Global Distribution Partner
TD SYNNEX has been named one of HPE’s two global distribution partners as Hewlett Packard Enterprise unifies its worldwide channel model and prepares for broader partner demand around AI, cloud, and networking infrastructure. TD SYNNEX expands global HPE distribution role The new setup is designed to simplify how partners work with HPE across regions while…
Cybersecurity, Exploits, Global Security News
Windows BitLocker zero-day gives access to protected drives, PoC released
A cybersecurity researcher has published proof-of-concept (PoC) exploits for two unpatched Microsoft Windows vulnerabilities named YellowKey and GreenPlasma, which are a BitLocker bypass and a privilege-escalation flaw. […]
Global Security News, Network Security
New GhostLock tool abuses Windows API to block file access
A security researcher has released a proof-of-concept tool named GhostLock that demonstrates how a legitimate Windows file API can be abused in attacks to block access to files stored locally or on SMB network shares. […]
AI, Exploits, Global Security News
cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor
A threat actor named Mr_Rot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor codenamed Filemanager on compromised environments. The attack exploits CVE-2026-41940, a vulnerability impacting cPanel and WebHost Manager (WHM) that could result in an authentication bypass and allow remote attackers to gain elevated control of…
AI, Cybersecurity, Exploits, Global Security News, Russia
New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials
Cybersecurity researchers have disclosed details of a new Linux backdoor named PamDOORa that’s being advertised on the Rehub Russian cybercrime forum for $1,600 by a threat actor called “darkworm.” The backdoor is designed as a Pluggable Authentication Module (PAM)-based post-exploitation toolkit that enables persistent SSH access by means of a magic password and specific TCP…
AI, Global Security News
New Linux ‘Dirty Frag’ zero-day gives root on all major distros
A new Linux zero-day vulnerability, named Dirty Frag, allows local attackers to gain root privileges on most major Linux distributions with a single command. […]
AI, Global Security News
New TCLBanker malware self-spreads over WhatsApp and Outlook
A new trojan named TCLBanker, which targets 59 banking, fintech, and cryptocurrency platforms, uses a trojanized MSI installer for Logitech AI Prompt Builder to infect systems. […]
Global Security News
New stealthy Quasar Linux malware targets software developers
A previously undocumented Linux implant named Quasar Linux (QLNX) is targeting developers’ systems with a mix of rootkit, backdoor, and credential-stealing capabilities. […]
AI, Global Security News
New Bluekit phishing service includes an AI assistant, 40 templates
A new phishing kit named Bluekit offers more than 40 templates targeting popular services and includes basic AI features for generating campaign drafts. […]
AI, Global Security News
Pack2TheRoot: 12-Year-Old Linux PackageKit Flaw Enables Full Compromise
Security experts have found a high-severity flaw named Pack2TheRoot in PackageKit that allows hackers to gain full root access on multiple Linux distributions.
AI, Global Security News
ACE the ping pong robot developed by engineers and researchers at THK and Sony AI is getting better and better at the game.
A new chapter in sports technology has unfolded as a table tennis robot named ACE has achieved a milestone that once seemed far beyond the reach of machines. Developed by Sony AI in partnership with Japanese robotics firm THK, ACE has demonstrated a level of skill, adaptability, and consistency that places it firmly in the…
AI, Global Security News, Government & Policy
New GopherWhisper APT group abuses Outlook, Slack, Discord for comms
A previously undocumented state-backed threat actor named GopherWhisper is using a Go-based custom toolkit and legitimate services like Microsoft 365 Outlook, Slack, and Discord in attacks against government entities. […]
china, Global Security News, Government & Policy
GopherWhisper: A burrow full of malware
ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions
AI, Global Security News, Government & Policy, malware
New AgingFly malware used in attacks on Ukraine govt, hospitals
A new malware family named ‘AgingFly’ has been identified in attacks against local governments and hospitals that steal authentication data from Chromium-based browsers and WhatsApp messenger. […]
AI, Global Security News
Boomi Named a Leader in IDC MarketScape for Worldwide API Management 2026
Boomi, the data activation company, has announced it has been named a Leader in the IDC MarketScape for Worldwide API Management 2026 Assessment, which evaluates vendors based on their capabilities and strategies for delivering API managementsolutions (APIM) in an increasingly AI-driven, hybrid enterprise landscape.
Global Security News
Sophos named a 2026 Gartner® Peer Insights™ Customers’ Choice for Managed Detection and Response
Third consecutive time being named a Customers’ Choice for MDR Categories: Products & Services Tags: Gartner, Gartner Peer Insights, MDR, Sophos MDR, Third-Party Reviews
Global Security News, malware
‘NoVoice’ Android malware on Google Play infected 2.3 million devices
A new Android malware named NoVoice was found on Google Play, hidden in more than 50 apps that were downloaded at least 2.3 million times. […]
AI, Global Security News, privacy
Proton launches new “Meet” privacy-focused conferencing platform
Proton has announced a new video conferencing service named Meet and positioned it as a privacy-focused alternative to mainstream services like Google Meet, Zoom, and Microsoft Teams. […]
Global Security News, Network Security
New RoadK1ll WebSocket implant used to pivot on breached networks
A newly identified malicious implant named RoadK1ll is enabling threat actors to quietly move from a compromised host to other systems on the network. […]
AI, Global Security News
Baidam Appoints Anita Sheridan-Roddick As Chief Revenue Officer To Champion Growth
COMPANY ANNOUNCEMENT: Hot on the heels of being named CEO of Baidam, Australia’s leading First Nations information technology provider, Beau Hodge has appointed Anita Sheridan-Roddick (formerly National Sales Director) as Chief Revenue Officer (CRO).
Global Security News, malware
New Infinity Stealer malware grabs macOS data via ClickFix lures
A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler. […]
AI, Cybersecurity, Exploits, Global Security News, Government & Policy, Risk Management
PolyShell flaw exposes Magento and Adobe Commerce to file upload attacks
Sansec found a Magento and Adobe Commerce REST API flaw, named PolyShell, which allows unauthenticated file uploads and possible XSS in older versions. Sansec disclosed a critical flaw in the Magento and Adobe Commerce REST API that allows attackers to upload executable files without authentication. The issue affects versions up to 2.4.9-alpha2 and could also…
AI, Global Security News, malware
Authorities Disrupt SocksEscort Proxy Botnet Exploiting 369,000 IPs Across 163 Countries
A court-authorized international law enforcement operation has dismantled a criminal proxy service named SocksEscort that enslaved thousands of residential routers worldwide into a botnet for committing large-scale fraud. “SocksEscort infected home and small business internet routers with malware,” the U.S. Department of Justice (DoJ) said. “The malware allowed SocksEscort to direct internet
Global Security News, malware
New BeatBanker Android malware poses as Starlink app to hijack devices
A new Android malware named BeatBanker can hijack devices and tricks users into installing it by posing as a Starlink app on websites masquerading as the official Google Play Store. […]
AI, Exploits, Global Security News
Spyware-grade Coruna iOS exploit kit now used in crypto theft attacks
A previously undocumented set of 23 iOS exploits named “Coruna” has been deployed by multiple threat actors in targeted espionage campaigns and financially motivated attacks. […]
Global Security News
Kinetic IT named a 2026 ServiceNow partner of the year
COMPANY NEWS: Kinetic IT today announced it has been named 2026 ServiceNow Consulting & Implementation Rising Star Partner of the Year for Asia Pacific, recognising its outstanding achievements and contributions to the ServiceNow ecosystem.
Global Security News, malware
QuickLens Chrome extension steals crypto, shows ClickFix attack
A Chrome extension named “QuickLens – Search Screen with Google Lens” has been removed from the Chrome Web Store after it was compromised to push malware and attempt to steal crypto from thousands of users. […]
AI, Global Security News, Risk Management
New Malicious npm Package Highlights the Speed at Which Supply Chain Risks Propagate
GUEST RESEARCH: Tenable Research investigated a malicious package in the npm public registry named “amber-src” that underscores the rapid nature of modern supply chain attacks. The package, which was downloaded approximately 50,000 times before its removal, was designed to mimic a popular package “ember-source”, to infect developers’ systems across Windows, macOS, and Linux.
Exploits, Global Security News, Network Security
Attackers Use New Tool to Scan for React2Shell Exposure
Researchers say threat actors wielded the sophisticated — and unfortunately named — toolkit to target high-value networks for React2Shell exploitation.
Europe, Global Security News
New ‘Massiv’ Android banking malware poses as an IPTV app
A newly identified Android banking trojan named Massiv has been under active distribution across south Europe, disguised as an IPTV app. […]
Global Security News
BeyondTrust Appoints Frank Cesarini as Partner Manager for Australia and New Zealand
COMPANY ANNOUNCEMENT: BeyondTrust, the global leader in privilege-centric identity security protecting Paths to Privilege, has named Frank Cesarini as Partner Manager for ANZ.
AI, Global Security News, Network Security
Superloop Awarded ‘Fastest Fixed Network’ in Australia for a Second Consecutive Time
COMPANY NEWS: Superloop has again been named “Fastest Fixed Network”* by Ookla for the second half of 2025, securing its second consecutive win and confirming its status as the award winner for 2025’s fastest fixed network provider, based on Ookla’s Speedtest Awards.
Global Security News, Security
New Linux botnet SSHStalker uses old-school IRC for C2 comms
A newly documented Linux botnet named SSHStalker is using the IRC (Internet Relay Chat) communication protocol for command-and-control (C2) operations. […]
AI, APAC, Global Security News, Network Security, Vendor Leadership & Partner Programs
Legacy Investing Taps Jackie Steinberg as First Channel Chief
Legacy Investing has named longtime channel executive Jackie Steinberg as its first Channel Chief, signaling a deeper push into a channel-first strategy to help data center users secure near-term, ready-for-service power capacity. The newly created role positions Steinberg to work alongside co-founder and managing partner Daniel English to build out a partner-led go-to-market approach focused…
AI, Announcements, Europe, Foundational (100), Global Security News, Security, Identity, & Compliance, Uncategorized
AWS named Leader in the 2025 ISG report for Sovereign Cloud Infrastructure Services (EU)
For the third year in a row, Amazon Web Services (AWS) is named as a Leader in the Information Services Group (ISG) Provider LensTM Quadrant report for Sovereign Cloud Infrastructure Services (EU), published on January 9, 2026. ISG is a leading global technology research, analyst, and advisory firm that serves as a trusted business partner…
AI, Announcements, Europe, Foundational (100), Global Security News, Security, Identity, & Compliance, Uncategorized
AWS named Leader in the 2025 ISG report for Sovereign Cloud Infrastructure Services (EU)
For the third year in a row, Amazon Web Services (AWS) is named as a Leader in the Information Services Group (ISG) Provider LensTM Quadrant report for Sovereign Cloud Infrastructure Services (EU), published on January 9, 2026. ISG is a leading global technology research, analyst, and advisory firm that serves as a trusted business partner…
AI, Announcements, Europe, Foundational (100), Global Security News, Security, Identity, & Compliance, Uncategorized
AWS named Leader in the 2025 ISG report for Sovereign Cloud Infrastructure Services (EU)
For the third year in a row, Amazon Web Services (AWS) is named as a Leader in the Information Services Group (ISG) Provider LensTM Quadrant report for Sovereign Cloud Infrastructure Services (EU), published on January 9, 2026. ISG is a leading global technology research, analyst, and advisory firm that serves as a trusted business partner…
AI, Announcements, Europe, Foundational (100), Global Security News, Security, Identity, & Compliance, Uncategorized
AWS named Leader in the 2025 ISG report for Sovereign Cloud Infrastructure Services (EU)
For the third year in a row, Amazon Web Services (AWS) is named as a Leader in the Information Services Group (ISG) Provider LensTM Quadrant report for Sovereign Cloud Infrastructure Services (EU), published on January 9, 2026. ISG is a leading global technology research, analyst, and advisory firm that serves as a trusted business partner…