News

Lazarus hackers adopt Medusa ransomware for extortion campaigns, targeting healthcare and nonprofits

Bys s February 24, 2026

Anna Ribeiro reports: A joint investigation by the Symantec and Carbon Black Threat Hunter teams details evidence that operators linked to the Lazarus hacker group are deploying Medusa ransomware in ongoing extortion campaigns targeting the U.S. healthcare sector and a Middle East entity, indicating the North Korean threat cluster continues ransomware-driven extortion campaigns despite prior U.S. indictments….

Source

News

Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
Bys s July 28, 2025

Ravie Lakshmanan reports: The notorious cybercrime group known as Scattered Spider is targeting VMware ESXi hypervisors in attacks targeting retail, airline, and transportation sectors in North America. “The group’s core tactics have remained consistent and do not rely on software exploits. Instead, they use a proven playbook centered on phone calls to an IT help desk,” Google’s…

Read More Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
News

Desjardins data breach: Quebec suspect arrested in Spain
Bys s January 6, 2026

City News reports: A man wanted Canada-wide in connection with a multimillion-dollar fraud and data theft of Desjardins clients was arrested in Spain, according to Quebec provincial police. The Sûreté du Québec says Juan Pablo Serrano, considered among the province’s most wanted fugitives, was arrested Nov. 6, 2025. He remains in custody in Spain. Authorities……

Read More Desjardins data breach: Quebec suspect arrested in Spain
News

Hackers Exploit Critical WordPress Theme Flaw to Hijack Sites via Remote Plugin Install
Bys s July 31, 2025

Threat actors are actively exploiting a critical security flaw in “Alone – Charity Multipurpose Non-profit WordPress Theme” to take over susceptible sites. The vulnerability, tracked as CVE-2025-5394, carries a CVSS score of 9.8. Security researcher Thái An has been credited with discovering and reporting the bug. According to Wordfence, the shortcoming relates to an arbitrary…

Read More Hackers Exploit Critical WordPress Theme Flaw to Hijack Sites via Remote Plugin Install
News

GitHub Supply Chain Breach: Coinbase Attack Exposes 218 Repositories, Leaks CI/CD Secrets
Bys s March 23, 2025

The supply chain attack involving the GitHub Action “tj-actions/changed-files” started as a highly-targeted attack against one of Coinbase’s open-source projects, before evolving into something more widespread in scope. “The payload was focused on exploiting the public CI/CD flow of one of their open source projects – agentkit, probably with the purpose of leveraging it for…

Read More GitHub Supply Chain Breach: Coinbase Attack Exposes 218 Repositories, Leaks CI/CD Secrets
News

A New Maturity Model for Browser Security: Closing the Last-Mile Risk
Bys s July 1, 2025

Despite years of investment in Zero Trust, SSE, and endpoint protection, many enterprises are still leaving one critical layer exposed: the browser. It’s where 85% of modern work now happens. It’s also where copy/paste actions, unsanctioned GenAI usage, rogue extensions, and personal devices create a risk surface that most security stacks weren’t designed to handle….

Read More A New Maturity Model for Browser Security: Closing the Last-Mile Risk
News

No need to hack when it’s leaking: Atrium Health edition
Bys s April 24, 2025

Researcher Jeremiah Fowler recently discovered an unsecured database with protected health information (PHI) linked to Atrium Health in North Carolina. As reported at WebsitePlanet, there were 21,344 records with a total size of 6.99 GB. The database appeared to be an FTP storage database. Fowler reports: The PDF documents’ metadata indicated that these were “Software…

Read More No need to hack when it’s leaking: Atrium Health edition

Similar Posts