“Cyber warfare is as much about psychological strategy as technical prowess.”
― James Scott
-

Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone [email protected] (The Hacker News)
Apple has updated its Beats Studio Buds wireless earbuds to patch a high-severity vulnerability that could be exploited by nearby hackers to eavesdrop on users. The vulnerability, tracked as CVE-2025-20701 (CVSS score: 8.8), refers to a case of incorrect authorization impacting the Airoha Bluetooth audio SDK that makes it possible to pair a Bluetooth audio…
-
Most security pros say their culture is ‘just average’
‘The Life and Times of Cybersecurity Professionals’ survey assessed how workers feel about defending against constant threats, as well as what’s getting better and what is not.Read More
-

F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution [email protected] (The Hacker News)
F5 has released security updates to address two critical security flaws in NGINX Open Source that could be exploited to achieve code execution on affected systems. The vulnerabilities are listed below – CVE-2026-42530 (CVSS v4 score: 9.2) – A use-after-free vulnerability in the ngx_http_v3_module that could be triggered by a remote unauthenticated attacker when NGINX…
-

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories [email protected] (The Hacker News)
The internet did not break this week. It got used exactly as designed, which is worse. Searches were siphoned through shady browser add-ons. AI chat links turned into malware delivery paths. macOS attacks ran in memory and left almost nothing behind. Cloud agents looked like helpers until attackers treated them like open shells. Add exposed…
-

Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2 [email protected] (The Hacker News)
Microsoft has disclosed details of a Windows-based cryptocurrency clipper campaign that has targeted users since February 2026. “The clipper in this campaign relies on Windows Script Host and ActiveX-driven logic to launch a bundled Tor proxy and poll a hidden-service C2 [command-and-control] server,” the Microsoft Defender Security Research Team said in an analysis published Tuesday.…
-

INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023 [email protected] (The Hacker News)
Cybersecurity researchers have charted the evolution of INC from an nascent ransomware-as-a-service (RaaS) operation to one of the most prolific cybercrime groups in 2026, claiming no less than 830 victims since August 2023. “The disruption of LockBit and the shutdown of BlackCat created opportunities for INC to expand as affiliates migrated to alternative ransomware operations,”…
-

DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic [email protected] (The Hacker News)
Threat actors associated with the DragonForce ransomware have been observed using a custom Go-based remote access trojan (RAT) called Backdoor.Turn to conceal command-and-control (C2) traffic inside Microsoft Teams relay infrastructure. According to findings from Broadcom-owned Symantec and Carbon Black, the backdoor was deployed against a major U.S. services firm. The name of the company wasRead…
-

Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network [email protected] (The Hacker News)
If an autonomous AI agent interacts with your company’s core intellectual property today, can your security team instantly name the person who authorized it? For most enterprises, the answer is a simple no. The rush to adopt internal AI tools has left a massive trail of administrative debt: orphaned agents (AI tools left running after…
-

The Scripts on Your Checkout Page Are Now a PCI DSS Problem [email protected] (The Hacker News)
An independent PCI assessor tested Reflectiz against the new PCI DSS rules. Here is the verdict: See the full QSA assessment here → When a customer types their card number into your checkout, their browser is running far more than your code. Analytics tags, a tag manager, a support widget, a payment iframe: a modern…
-

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments [email protected] (The Hacker News)
An unknown threat actor has been observed leveraging paid or promoted posts on legitimate news websites to drum up buzz for their warez, according to new findings from Check Point Research. The threat actor also has at their disposal a dedicated WordPress phishing page that acts as the central hub, alongside GitHub and SourceForge projects…
“Security used to be an inconvenience sometimes, but now it’s a necessity all the time.”
― Martina Navratilova
