The Payouts King ransomware is using the QEMU emulator as a reverse SSH backdoor to run hidden virtual machines on compromised systems …
Fraud Tracker
- Fraud Tracker
First case of its kind, DOJ hits IBM with false claims for diversity practices
by AiNewsBlogby AiNewsBlogIn the first enforcement case of its kind, International Business Machines (IBM) settled allegations that it violated the False Claims Act (FCA) …
- Fraud Tracker
Data breach at edtech giant McGraw Hill affects 13.5 million accounts
by AiNewsBlogby AiNewsBlogThe ShinyHunters extortion group has leaked data from 13.5 million McGraw Hill user accounts, stolen after breaching the company’s Salesforce environment earlier …
Microsoft today pushed software updates to fix a staggering 167 security vulnerabilities in its Windows operating systems and related software, including a …
- Fraud Tracker
Microsoft releases Windows 10 KB5082200 extended security update
by AiNewsBlogby AiNewsBlogMicrosoft has released the Windows 10 KB5082200 extended security update to fix the April 2026 Patch Tuesday vulnerabilities, including 2 zero-days. This …
- Fraud Tracker
APT41 Delivers ‘Undetectable’ Backdoor to Steal Cloud Credentials
by AiNewsBlogby AiNewsBlogThe notorious Chinese threat group APT41 is using an undetectable backdoor malware to target Linux-based cloud workloads to steal credentials from Amazon …
- Fraud Tracker
Over 20,000 crypto fraud victims identified in international crackdown
by AiNewsBlogby AiNewsBlogAn international law enforcement action led by the U.K.’s National Crime Agency (NCA) has identified over 20,000 victims of cryptocurrency fraud across …
PRESS RELEASE WASHINGTON — FINRA announced today the launch of the Financial Intelligence Fusion Center (FIFC), a secure portal for FINRA and its member …
A financially motivated threat actor tracked as Storm-2755 is stealing Canadian employees’ salary payments after hijacking their accounts in payroll pirate attacks. …
- Fraud Tracker
When attackers already have the keys, MFA is just another door to open
by AiNewsBlogby AiNewsBlogThe Figure breach exposed 967,200 email records without a single exploit. Understanding what that enables — and why your MFA cannot contain …
- Fraud Tracker
New UNC6783 hackers steal corporate Zendesk support tickets
by AiNewsBlogby AiNewsBlogA threat actor tracked as UNC6783 is compromising business process outsourcing (BPO) providers to gain access to high-value companies across multiple sectors. According to the …
- Fraud Tracker
Americans lost a record $21 billion to cybercrime last year
by AiNewsBlogby AiNewsBlogU.S. victims lost nearly $21 billion to cyber-enabled crimes last year, driven primarily by investment scams, business email compromise, tech support fraud, …
- Fraud Tracker
German authorities identify REvil and GandCrab ransomware bosses
by AiNewsBlogby AiNewsBlogThe Federal Police in Germany (BKA) has identified two Russian nationals as the leaders of GandCrab and REvil ransomware operations between 2019 and …
- Fraud Tracker
Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab – Krebs on Security
by AiNewsBlogby AiNewsBlogAn elusive hacker who went by the handle “UNKN” and ran the early Russian ransomware groups GandCrab and REvil now has a …
- Fraud Tracker
Hims & Hers warns of data breach after Zendesk support ticket breach
by AiNewsBlogby AiNewsBlogTelehealth giant Hims & Hers Health is warning that it suffered a data breach after support tickets were stolen from a third-party …
- Fraud Tracker
Device code phishing attacks surge 37x as new kits spread online
by AiNewsBlogby AiNewsBlogDevice code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more than 37 times this …
After some delay, Apple has patched the vulnerabilities associated with the DarkSword exploit chain for all affected customers, even those who aren’t …
Dark Reading’s Becky Bracken: Hello everybody and welcome back to Dark Reading Confidential. It’s a podcast from the editors of Dark Reading, …
QUESTION: Are we training AI too late? Nishawn Smagh, Director of Intelligence at GreyNoise: Artificial intelligence anchors modern security operations. Detection models …
AI is forcing organizations to rethink how trust is established and managed. Speaking with Dark Reading News Desk, Amit Sinha explains that …
- Fraud Tracker
Manufacturing and Healthcare Share Struggles with Passwords
by AiNewsBlogby AiNewsBlogTwo disparate industries, manufacturing and healthcare, share several weaknesses that lead to significant security gaps, especially in password hygiene. To address in …
- Fraud Tracker
Critical Fortinet Forticlient EMS flaw now exploited in attacks
by AiNewsBlogby AiNewsBlogAttackers are now actively exploiting a critical vulnerability in Fortinet’s FortiClient EMS platform, according to threat intelligence company Defused. Tracked as CVE-2026-21643, …
A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the Discussions section …
- Fraud Tracker
Coruna, DarkSword & Democratizing Nation-State Exploit Kits
by AiNewsBlogby AiNewsBlogCoruna, a high-grade mobile exploit kit armed with zero-day vulnerabilities for high-level espionage efforts, turns out to have links to 2023’s Operation …
- Fraud Tracker
Dutch Police discloses security breach after phishing attack
by AiNewsBlogby AiNewsBlogThe Dutch National Police (Politie) says a security breach resulting from a successful phishing attack has had a limited impact and hasn’t …
- Fraud Tracker
TikTok for Business accounts targeted in new phishing campaign
by AiNewsBlogby AiNewsBlogThreat actors are targeting TikTok for Business accounts in a phishing campaign that prevents security bots from analyzing malicious pages. TikTok Business …
- Fraud Tracker
Citrix urges admins to patch NetScaler flaws as soon as possible
by AiNewsBlogby AiNewsBlogCitrix has patched two vulnerabilities affecting NetScaler ADC networking appliances and NetScaler Gateway secure remote access solutions, one of which is very similar …
- Fraud Tracker
‘CanisterWorm’ Springs Wiper Attack Targeting Iran – Krebs on Security
by AiNewsBlogby AiNewsBlogA financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads …
A threat actor is systematically targeting cloud credentials, SSH keys, authentication tokens, and other sensitive secrets stored in automated enterprise software build …
- Fraud Tracker
FBI links Signal phishing attacks to Russian intelligence services
by AiNewsBlogby AiNewsBlogThe FBI has issued a public service announcement warning that Russian intelligence-linked threat actors are actively targeting users of encrypted messaging apps …
