German authorities identify REvil and GangCrab ransomware bosses
The Federal Police in Germany (BKA) has identified two Russian nationals as the leaders of GandCrab and REvil ransomware operations between 2019 and 2021. According to…
Author: Cybernoz
Hackers Drain $286 Million From Drift Protocol in Suspected North Korea-Linked Exploit
The largest decentralized perpetual futures exchange on the Solana blockchain — became the target of a massive and well-orchestrated theft on April 1, 2026, Drift…
Drift Protocol Hit in $286M Suspected North Korea-Linked Crypto Heist
Hackers have stolen approximately $286 million from Drift Protocol, a leading decentralized perpetual futures exchange on the Solana blockchain, in what security researchers believe may…
Why Security Researchers and Red Teams Are Turning to Workflow Automation
There’s a quiet change happening in security operations that doesn’t make headlines the way a fresh zero-day does – but its impact on how defenders…
DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea
Ravie LakshmananApr 06, 2026Malware / Threat Intelligence Threat actors likely associated with the Democratic People’s Republic of Korea (DPRK) have been observed using GitHub as command-and-control…
Australia plays hardball on social media ban
Since Australia banned children from using social media in December, lawmakers from Spain to Malaysia have expressed interest in following suit, while US courts have…
North Korean Hackers Target High-Profile Node.js Maintainers
The North Korean threat actor blamed for the Axios supply chain attack has been aiming its social engineering campaign at various Node.js maintainers, Socket reports.…
Phishing LNK files and GitHub C2 power new DPRK cyber attacks
Phishing LNK files and GitHub C2 power new DPRK cyber attacks Pierluigi Paganini April 06, 2026 DPRK-linked hackers use GitHub C2s, starting attacks via phishing…
Critical flaw in FortiClient EMS under exploitation
Fortinet released an emergency hotfix after security researchers discovered the vulnerability being exploited as a zero-day. Source link
Fortinet customers confront actively exploited zero-day, with a full patch still pending
Fortinet released an emergency software update over the weekend to address an actively exploited vulnerability in FortiClient EMS, an endpoint management tool for customer devices.…
6 ways attackers abuse AI services to hack your business
“This is the AI equivalent of name-squatting a package registry, except there’s no central MCP authority verifying server identity and no cryptographic link between an…
Convicted spyware maker Bryan Fleming avoids jail at sentencing
The first convicted spyware maker in over a decade has avoided jail time after earlier pleading guilty to U.S. federal charges associated with running his…