1+ hour, 13+ min ago  (240+ words) An online clothing shop linked to FBI Director Kash Patel went offline on Friday after it was found distributing an Infostealer to visitors. The shop, called Based Apparel, was compromised by hackers to trick mac OS users into downloading this…...

6+ hour, 14+ min ago  (313+ words) Dutch authorities have taken down a hosting network allegedly used to support cyberattacks, disinformation campaigns, and sanctions evasion, following a joint investigation that pulled in financial crime investigators, intelligence services, and police units from several European countries. The operation, led…...

16+ hour, 18+ min ago  (470+ words) The listing appeared earlier this week on a well-known cybercrime forum, where a user operating under the alias "Euphoric_Reply_5727" offered what they described as "340 Million User Records" linked to Only Fans users. The seller priced the database at 0. 313 BTC, roughly $76, 000 at…...

2+ day, 6+ hour ago  (424+ words) Cybersecurity firm Vuln Check's latest research reveals that cybercriminals are now targeting old models of ASUS routers by exploiting a software vulnerability from 2018, tracked as CVE-2018-5999. This is a critical unauthenticated configuration update vulnerability with a CVSS score of 9. 8/10 that…...

2+ day, 21+ hour ago  (390+ words) In its latest alert, the Federal Bureau of Investigation (FBI) is warning about a new Phishing-as-a-Service (Paa S) platform called Kali365 that specifically targets Microsoft 365 accounts. The phishing platform was first detected in April 2026 and is offered on Telegram as a monthly…...

3+ day, 3+ hour ago  (315+ words) The hackers used fake Git Hub accounts with random eight-character names to hide their tracks, and even changed their system settings to appear official automated services, using fake sender identities like build-bot, auto-ci, ci-bot, and pipeline-bot. The attack occurred around…...

4+ day, 1+ hour ago  (360+ words) A new study conducted by the cybersecurity firm Aikido Security reveals that deleted Google API keys stay active and can continue authenticating successfully for up to 23 minutes after they are removed. The results were obtained after running 10 controlled trials over…...

4+ day, 4+ hour ago  (710+ words) French and Dutch authorities have shut down First VPN, a service widely used by cybercriminals to hide their online activity while carrying out ransomware attacks, phishing campaigns, and other illegal operations. The operation, dubbed Operation Saffron by authorities, was carried…...

4+ day, 5+ hour ago  (545+ words) A global mobile billing fraud campaign has been targeting Android users by silently subscribing them to expensive premium text services. Zimperium z Labs, which reported this campaign, has identified around 250 malicious applications involved in this operation. These apps are designed…...

4+ day, 7+ hour ago  (424+ words) An old Windows tool called MSHTA is being exploited by hackers to infect systems with malware, reveals the latest research from Bitdefender. Reportedly, this tool, which was created to work with Internet Explorer (IE), still remains active by default on…...