US sanctions Russian cyber broker Operation Zero for trafficking stolen US government exploits
Sanctions also target two Trickbot members who allegedly helped Operation Zero and their own exploit brokerage firm.
Cybersecurity News - Page 11
Phishing campaigns target Taiwan with Winos 4.0 malware
Analysis of domain registration data indicates that the threat actors are using a rotating set of domains and cloud hosting services to deliver malware.
Lazarus-linked hackers target US healthcare with Medusa ransomware
This marks the first time the Medusa ransomware has been linked to North Korean threat actors.
Mimicrat ClickFix campaign delivers custom RAT via compromised legitimate websites
The observed campaign deploys a five-stage infection chain installing a native C implant designed for persistence and lateral movement.
New cryptojacking campaign uses pirated software to deploy XMRig miner
The attack begins with social engineering lures promoting free premium software, including pirated office productivity suite installers.
Ukrainian sentenced to 5 years in prison for aiding North Korean IT scheme
Oleksandr Didenko stole the identities of US citizens and sold them to overseas IT workers through the UpWorkSell online platform.
RoundCube and BeyondTrust flaws exploited in the wild
CISA has flagged the BeyondTrust vulnerability as actively exploited in ransomware attacks.
Shai-Hulud-style npm attack hijacks CI workflows and poisons AI toolchains
The attack resembles earlier “Shai-Hulud” waves, embedding malicious code into npm packages.
Russian-speaking threat actor uses AI toolkits to breach 600+ Fortinet firewalls
The documentation found by the team mentions multiple CVEs across various targets, but it appears that the attackers largely failed while attempting to exploit weaknesses.
Cyber Security Week in Review: February 20, 2026
In brief: Chinese hackers exploit a zero-day flaw in Dell software, Google has patched the first Chrome zero-day of the year, and more.
Showing elements 101 - 110