Inside the RaaS Ecosystem: Operators, Affiliates & Attack Tradecraft
Ransomware actors following a ransomware-as-a-service (or RaaS) model are often described as one cohesive threat actor. But reality – and what we see in actual…
Latest Cybersecurity News — Page 20
View all →
Ukraine identifies infostealer operator tied to 28,000 stolen accounts
The Ukrainian cyberpolice, working in conjunction with U.S. law enforcement, has identified an 18-year-old man from Odesa suspected of running an infostealer malware operation targeting…
Hackers Use Fake Income Tax Assessment Pages to Infect Windows Systems
A new threat campaign is targeting Windows users in India by disguising malicious files as official income tax documents. Researchers have tracked the operation under…
Check Point Wants AI Agents to Do What Security Teams Can’t: Manage Networks at Machine Speed
Check Point has launched an agentic orchestration platform that can end the policy drift, stalled Zero Trust projects, and manual configuration backlogs that have plagued…
A Bipartisan Amendment Would End Police License Plate Tracking Nationwide
US lawmakers plan to introduce an amendment Thursday at a House committee markup hearing that would prohibit any recipient of federal highway funding from using…
Critical ExifTool Vulnerability Lets Hackers Compromise Macs via Malicious Images
A newly disclosed vulnerability in ExifTool, tracked as CVE-2026-3102, exposes macOS systems to command execution attacks through malicious image metadata, highlighting ongoing risks in widely…
GitHub Breach: TeamPCP Steals 3,800 Repositories via VS Code Extension
GitHub is the newest target of a data breach in which hackers from the infamous TeamPCP hackers bypassed its security to gain access to internal…
Verizon DBIR: Vulnerability exploitation is the dominant initial access vector
Vulnerability exploitation has overtaken stolen credentials as the most common way attackers gain initial access to target networks, according to the 2026 Verizon Data Breach…
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development
Ravie LakshmananMay 20, 2026Artificial Intelligence / Security Testing Microsoft has unveiled two new open-source tools called RAMPART and Clarity to assist developers in better testing…
Spanish police ‘systematically’ hid cryptophone intercepts from courts, claims ex chief
A former police chief, who faces drug trafficking charges has claimed that Spanish drug investigators fabricated fictitious intelligence reports to hide their use of intercepted…
Fears of unfettered hacking spurred by Anthropic’s Mythos AI model likely ‘overstated’
Early fears that Anthropic’s new AI model, Mythos, could dramatically turbocharge hacking are looking overstated a month after its release. The company warned at launch in…
Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass
Microsoft on Tuesday rolled out mitigations for YellowKey, a recently disclosed zero-day vulnerability leading to BitLocker bypass. The issue, now tracked as CVE-2026-45585 (CVSS score…