Loopscale Breach Twist: Hacker Offers to Return Funds for 20%.

Australians among 560 million users around the world caught in Ticketmaster hack.

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt.

Russian hackers turn Kazuar backdoor into modular P2P botnet.

INTERPOL’s Operation Ramz led to 201 arrests across 13 MENA countries, with 382 suspects and 3,867 victims identified.

Authorities seized 53 servers while targeting phishing, malware, and cyber scam operations.

Clean-looking phishing emails are bypassing filters and hitting US orgs hard.

Fake invitations + CAPTCHA tricks lead to credential theft, OTP capture & RMM tools.

Four malicious npm packages with 3,006 downloads were found delivering infostealers and Phantom Bot DDoS malware.

One package clones leaked Shai-Hulud worm code, while others steal SSH keys, cloud credentials and wallet data.

NGINX bug (CVE-2026-42945) now under active exploitation.

Critical heap overflow in rewrite module. Attackers can crash workers with one request (possible RCE).

New Reaper Malware Uses Fake Microsoft Domain to Steal macOS Passwords.

AudioHijack: adversarial audio attacks on generative voice models transfer from open weights to Microsoft and Mistral production systems.

Public Amazon bucket leaks sensitive guest data from Japanese hotel platform Tabiq.

Hacktivists, Ransomware, and a 124% Surge Across DACH.

Millions Impacted Across Several US Healthcare Data Breaches.

‘Claw Chain’ OpenClaw Flaws Allow Sandbox Escape, Backdoor Delivery.

Poland directs officials to ditch Signal in favor of 'secure' state-developed alternative.

Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws.

Mozilla warns UK: Breaking VPNs will not magically fix Britain's age-check mess.

ASELSAN aims to produce a fully domestic and national smart mobile phone by 2027. It will be equipped with domestic battery, domestic chip, and secure communication technologies.

The purpose of the project is to transfer the knowledge accumulated in the defense industry to the civilian sector and produce a phone equipped with domestic battery, domestic chip, and secure communication technologies.

Hacktivist group “Gladiators of God” claims it breached a subdomain of Israeli ISP LiveCity (livecity.co.il) in Beersheba, exfiltrating data of 2,880 users after reportedly bypassing multiple security layers, with plans to release the data publicly.

The hacker group "Team 313" claimed in a statement to have carried out a large-scale DDOS attack against the infrastructure of the Microsoft Power BI service.

The hacker group S-Root claims to have accessed and disclosed about 12 gigabytes of data from the private "Aman" hospital in Doha.