A new cyber campaign has emerged, targeting cryptocurrency firms through deceptive recruitment tactics and custom malware designed for macOS systems. Researchers from Wiz have identified this threat actor, known as JINX-0164, which employs social engineering to lure victims into downloading malicious software. The malware is tailored to exploit continuous integration and continuous deployment (CI/CD) infrastructures, increasing the risk of digital asset theft for affected organizations. As cryptocurrency firms often handle significant amounts of valuable digital assets, these attacks could lead to substantial financial losses and damage to their reputations. Companies in the crypto space need to be vigilant and enhance their security measures to protect against these sophisticated threats.
Latest Cybersecurity Threats
Real-time threat intelligence from trusted sources
A recent study by Mysterium VPN revealed that an astonishing 19.6 billion files are publicly accessible on the internet due to misconfigured cloud storage buckets. Among these files, there are around 685,000 credential files and nearly 1 million database dumps. This situation exposes sensitive information and undermines the common belief that data stored with companies is secure. The findings raise significant concerns about data privacy and security, emphasizing that many organizations may not be adequately protecting their data. It’s crucial for companies to review their cloud configurations to prevent unauthorized access to sensitive information.
A 35-year-old man from Buren, Netherlands, has been arrested by the Dutch National Police for hacking into AFC Ajax's computer systems. The investigation began after the football club discovered that its systems had been accessed without authorization, leading to the exposure of personal records for approximately 300,000 fans. The suspect is believed to have gained unauthorized access multiple times. This incident raises concerns about the security of fan data in sports organizations and the potential risks associated with such breaches. As data privacy becomes increasingly important, this case underscores the need for sports clubs to enhance their cybersecurity measures to protect sensitive information.
Despite the growing concerns around cybersecurity, a recent survey of Chief Information Security Officers (CISOs) in northern Europe found that most are not experiencing a significant increase in cyberattacks compared to two years ago. This suggests that while the threat of cyber incidents remains, the situation for many organizations has stabilized. The findings indicate that companies have likely adapted their defenses and strategies against potential attacks, even with the rise of artificial intelligence in cyber operations. Understanding this trend is important for businesses as it helps inform their security postures and resource allocations. Overall, the report provides a snapshot of the current state of cybersecurity in northern Europe, demonstrating resilience in the face of evolving threats.
Recent research has uncovered a long-running cybercrime operation targeting fans of pirated books, movies, and TV shows. In 2026, experts identified new websites associated with this gang, attracting tens of millions of visitors. These sites have been linked to malware distribution, including a Remote Access Trojan (RAT) that allows attackers to control infected devices. This situation poses significant risks for users who access these pirated materials, as they may unknowingly download harmful software. It's crucial for consumers to be aware of these dangers and consider the security implications of engaging with pirated content.
SCM feed for Latest
The FBI has issued a warning to law firms about a new tactic being used by the Silent Ransom Group (SRG) to steal sensitive data. These attackers are impersonating IT support staff and reaching out to victims through phone calls or phishing emails, aiming to gain access to their systems via remote desktop sessions. This method is particularly concerning for law firms, which often handle confidential information. If successful, these attacks could lead to significant data breaches, putting client information at risk. The FBI emphasizes the need for firms to be vigilant and to verify the identity of anyone requesting remote access to their systems.
OpenAI has announced plans to enhance cybersecurity measures to protect against election interference in the upcoming 2026 midterms. This initiative builds on efforts from major tech companies in 2024 aimed at tackling the challenges posed by artificial intelligence in election processes. The focus is on preventing the manipulation of information and safeguarding the integrity of elections, especially as AI technology continues to evolve. This is significant as it demonstrates a proactive approach to a growing concern over how technology can influence democratic processes and public opinion. The collaboration with other tech firms suggests a concerted effort to address these threats before they manifest in future elections.
The FBI has issued a warning about the Silent Ransom Group, a ransomware gang that is now physically infiltrating law firms to steal sensitive data. This group employs social engineering tactics to gain access to servers and databases, making them a significant threat to legal practices. Their actions can lead to severe data breaches, putting client information at risk and potentially harming the reputation of affected law firms. As legal firms often handle confidential information, the implications of such breaches could be far-reaching, affecting clients and the firms' operations. It's crucial for law firms to strengthen their cybersecurity measures to defend against this emerging threat.
Hackread – Cybersecurity News, Data Breaches, AI and More
Iran's Nimbus Manticore hacking group has been targeting US companies by distributing trojanized installers of Zoom, a popular video conferencing software. This malicious tactic is part of a broader cyber campaign linked to the Iranian Revolutionary Guard Corps (IRGC). By disguising malware within legitimate software, the attackers aim to infiltrate and compromise sensitive networks of various firms. This incident raises significant concerns about the security of widely used applications and highlights the potential risks associated with downloading software from unverified sources. Companies should be vigilant and ensure their software is obtained from trusted platforms to avoid falling victim to similar attacks.
In a recent speech, the UK's chief of cyberspying warned that Russia is increasing its aggressive activities in a 'gray zone' that doesn't quite reach the level of war. This reflects ongoing concerns among intelligence experts about Russia's tactics, which may include cyber operations and disinformation campaigns aimed at destabilizing countries without triggering direct military conflict. The chief emphasized the role of artificial intelligence in these operations, describing it as an 'unstoppable force' that could amplify Russia's capabilities in this area. This warning serves as a reminder for nations to remain vigilant and prepared for potential cyber threats that could disrupt security and stability. The implications of these developments are significant, as they suggest a shift in how conflicts may be waged in the future, particularly with non-traditional warfare tactics.
Cybercriminals have leaked 5.8 million records of Uruguayan citizens, marking another instance of hackers targeting government databases to sell personal information. This breach raises serious concerns about the security of sensitive data held by government agencies and the potential for identity theft and fraud. The leaked information could be used for various malicious purposes, including financial scams and phishing attacks. As more government data becomes accessible online, the risks to citizens increase, highlighting the need for stronger security measures to protect personal information. This incident serves as a stark reminder for governments to prioritize cybersecurity to safeguard their citizens' data.
Recent research indicates that attackers are increasingly using artificial intelligence to speed up the development of exploits for known vulnerabilities, specifically CVEs (Common Vulnerabilities and Exposures). This advancement allows malicious actors to create working exploits much faster than traditional methods, making it harder for security scanners to detect and mitigate these threats in a timely manner. As a result, organizations could be at greater risk of attacks that exploit these vulnerabilities before they have a chance to be patched. The implications are significant, as it suggests a need for companies to enhance their security measures and stay ahead of evolving tactics used by attackers. Users and organizations must remain vigilant and proactive in addressing vulnerabilities to protect their systems from potential exploitation.
Recent reports from WatchGuard and ESET reveal two banking trojan campaigns targeting users in Latin America and Europe. The Grandoreiro malware is aimed at Windows devices, while the BTMOB RAT is designed for Android users. These campaigns specifically target companies in Spain, Portugal, and Mexico, as well as mobile users in Brazil. The malware's ability to siphon sensitive financial information poses a significant risk to both businesses and individual users. As cybercriminals continue to adapt their tactics, it's crucial for users to remain vigilant and implement security measures to protect their devices and data.
Researchers from Novee have identified a serious vulnerability in Pretalx, an open-source tool widely used for managing conference talks. This flaw allows attackers to take over accounts, effectively granting them a 100% acceptance rate for talk submissions. This means that malicious users could manipulate the platform to ensure their presentations are accepted without proper vetting. The implications are significant for conference organizers who rely on Pretalx for managing submissions, as it undermines the integrity of the selection process. Users and event organizers are urged to review their security practices and stay alert for updates from Pretalx to protect against potential exploitation.
Schneier on Security
The FBI recently released its 2025 Internet Crime Report, providing insights into the state of cybercrime in the U.S. The report outlines various types of online crimes, including fraud, identity theft, and ransomware attacks, which have become increasingly prevalent. It notes that individuals and businesses are being targeted more frequently, leading to significant financial losses. The report emphasizes the importance of awareness and prevention strategies to help mitigate these risks. As cyber threats evolve, understanding their impact is crucial for both users and organizations.