Cybersecurity

Authorities from 14 countries shut down LeakBase, seize its domains, and arrest multiple people allegedly tied to the cybercrime forum, which had 142K+ members

by

Innerworld@lemmy.world

3 hours ago

DOJ Press Release

0

4

Online ads surpassed email as the primary malware channel in 2025, accounting for 60%+ of all observed malware and phishing campaigns

by

Innerworld@lemmy.world

3 hours ago

1

50

Weird server requests

by

Wren@lemmy.dbzer0.com

17 hours ago

So I’m the server admin and web developer for my school’s robotics team. I look through the servers access logs every once in a while just to check on things. I keep seeing requests that look like someone’s scanning for vulns. But I’m seeing something I’ve never seen before. It looks like someone is sending requests in machine code and I have no idea why or what it would do???

5

7

LexisNexis says hackers accessed legacy data in contained breach | The Record from Recorded Future News

by

Cybersecurity

Authorities from 14 countries shut down LeakBase, seize its domains, and arrest multiple people allegedly tied to the cybercrime forum, which had 142K+ members (cyberscoop.com)

Online ads surpassed email as the primary malware channel in 2025, accounting for 60%+ of all observed malware and phishing campaigns (businessinsider.com)

Weird server requests

LexisNexis says hackers accessed legacy data in contained breach | The Record from Recorded Future News (therecord.media)

Paint maker giant AkzoNobel confirms cyberattack on U.S. site (bleepingcomputer.com)

Threat actors weaponize OAuth redirection logic to deliver malware - Help Net Security (helpnetsecurity.com)

Ransomware attack exposes 1.2 million University of Hawaii Cancer Center records | news | SC Media (scworld.com)

Huge “Shadow Layer” of Organizations Hit by Supply Chain Attacks - Infosecurity Magazine (infosecurity-magazine.com)

A Possible US Government iPhone-Hacking Toolkit Is Now in the Hands of Foreign Spies and Criminals (wired.com)

Hacktivist group “Department of Peace” claims to have breached a DHS tech‑procurement office, leaking ICE contract records involving over 6,000 vendors, including major defense and surveillance firms (techcrunch.com)

Fake Tech Support Spam Deploys Customized Havoc C2 Across Organizations (thehackernews.com)

LLMs can unmask pseudonymous users at scale with surprising accuracy (arstechnica.com)

The Banality of AI (Hallucination → Bomb School?) (tech.michaelaltfield.net)

UK reduces cyberattack fix times from two months to eight days - Help Net Security (helpnetsecurity.com)

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT (thehackernews.com)

Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities | CyberScoop (cyberscoop.com)

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday (thehackernews.com)

Vulnerability Allowed Hijacking Chrome's Gemini Live AI Assistant - SecurityWeek (securityweek.com)

Malicious “RedAlert - Rocket Alerts” Application Targets Israeli Phone Calls, SMS, and User Information | Cloudflare (cloudflare.com)

Pakistan’s Top News Channels Hacked and Hijacked With Anti-Military Messages (hackread.com)

New AirSnitch attack bypasses Wi-Fi encryption in homes, offices, and enterprises (arstechnica.com)

Hackers Weaponize Claude Code in Mexican Government Cyberattack - SecurityWeek (securityweek.com)

CISA warns that RESURGE malware can be dormant on Ivanti devices (bleepingcomputer.com)

ClawJacked Flaw Lets Malicious Sites Hijack Local OpenClaw AI Agents via WebSocket (thehackernews.com)

Hackers Use 1Campaign to Hide Malicious Ads From Google Reviewers (hackread.com)

900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks (thehackernews.com)

Canadian Tire Data Breach Impacts 38 Million Accounts - SecurityWeek (securityweek.com)

Israel hacked BadeSaba, a popular Iranian prayer app with 5M+ installs on Google Play, to send messages urging Iranian military personnel to defect (wsj.com)

Vshell: A Chinese-Language Alternative to Cobalt Strike - Censys (censys.com)

Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens (thehackernews.com)

Hacking group begins leaking customer data in Dutch telecom Odido hack (reuters.com)

Critical Juniper Networks PTX flaw allows full router takeover (bleepingcomputer.com)

Trend Micro warns of critical Apex One code execution flaws (bleepingcomputer.com)

European DYI chain ManoMano data breach impacts 38 million customers (bleepingcomputer.com)

Google API Keys Weren't Secrets. But then Gemini Changed the Rules. ◆ Truffle Security Co. (trufflesecurity.com)

Ransomware payment rate drops to record low as attacks surge (bleepingcomputer.com)

UFP Technologies discloses data breach after cybersecurity incident | brief | SC Media (scmagazine.com)

Conduent Says Hack Now Affects at Least 25 Million Patients (govinfosecurity.com)

Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023 (bleepingcomputer.com)

CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability (thehackernews.com)

Cost of Insider Incidents Surges 20% to Nearly $20m - Infosecurity Magazine (infosecurity-magazine.com)

Zyxel warns of critical RCE flaw affecting over a dozen routers (bleepingcomputer.com)

Unknown hacker used Claude to steal 150GB of Mexican government data, including 195M taxpayer records, in December 2025 and January 2026 (bloomberg.com)

Google disrupts Chinese-linked group UNC2814, which breached 53+ organizations across 42 countries and utilized Google Sheets to manage targeting and data theft (reuters.com)

Malicious NuGet Package Targets Stripe Developers - Infosecurity Magazine (infosecurity-magazine.com)

RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN (thehackernews.com)

Self-spreading npm malware targets developers in new supply chain attack - Help Net Security (helpnetsecurity.com)

Phishing campaign targets freight and logistics orgs in the US, Europe (bleepingcomputer.com)

VMware Aria Operations Vulnerability Could Allow Remote Code Execution - SecurityWeek (securityweek.com)

Five security lessons from the FBI’s Washington Post raid (freedom.press)

Infosec community panics as Anthropic rolls out Claude code security checker (theregister.com)

ShinyHunters leak 12.4M CarGurus records after ransom threat (cybernews.com)

Connected cars can be hacked, research finds (news.northeastern.edu)

Multiple Zero-Day Flaws in PDF Platforms Enable XSS and One-Click Attacks (hackread.com)

Microsoft Copilot Ignored Sensitivity Labels, Processed Confidential Emails (techrepublic.com)

Over 200K Australian Driver’s Licences Exposed in youX Cyber Breach (techrepublic.com)

North Korean Lazarus Group Now Working With Medusa Ransomware (security.com)

Leading Semiconductor Supplier Advantest Hit by Ransomware Attack - Infosecurity Magazine (infosecurity-magazine.com)

Ad tech firm Optimizely confirms data breach after vishing attack (bleepingcomputer.com)

Spain arrests suspected hacktivists for DDoSing govt sites (bleepingcomputer.com)

Conduent Data Breach - Largest Data Breach in U.S. History As Ransomware Group Stolen 8 TB of Data (cybersecuritynews.com)

Google Chrome Emergency Security Update Patches Three High-Severity Vulnerabilities (cybersecuritynews.com)

ShinyHunters Allegedly Claim Breach of 21 Million Records from Odido (cybersecuritynews.com)

Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb (thehackernews.com)

APT28 Targeted European Entities Using Webhook-Based Macro Malware (thehackernews.com)

Hackers Hide Pulsar RAT Inside PNG Images in New NPM Supply Chain Attack (hackread.com)

An AI coding bot took down Amazon Web Services - Ars Technica (arstechnica.com)

CISA Adds Two Actively Exploited Roundcube Flaws to KEV Catalog (thehackernews.com)

Amazon: AI-assisted hacker breached 600 Fortinet firewalls in 5 weeks (bleepingcomputer.com)

How Android Malware Makes Itself Unkillable and “Un”-Uninstallable | by carson12345 | Feb, 2026 | InfoSec Write-ups (infosecwriteups.com)

Japanese tech giant Advantest hit by ransomware attack (bleepingcomputer.com)

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens (thehackernews.com)

How the US government, OpenAI and Persona spy on you through age verification. (vmfunc.re)

France's Ministry of Economy disclosed that attackers used stolen official credentials to access FICOBA, the national bank account registry, exposing data on 1.2 million accounts (securityweek.com)

Dramatic Escalation Frequency and Power of in DDoS Attacks - Infosecurity Magazine (infosecurity-magazine.com)

PayPal discloses data breach that exposed user info for 6 months (bleepingcomputer.com)

Mississippi medical center closes all clinics after ransomware attack (bleepingcomputer.com)

Texas sues TP-Link alleging Chinese government access to its devices (reuters.com)

Data breach at media behemoth RTL Group exposes employee data, attackers claim (cybernews.com)

Authorities from 14 countries shut down LeakBase, seize its domains, and arrest multiple people allegedly tied to the cybercrime forum, which had 142K+ members

Online ads surpassed email as the primary malware channel in 2025, accounting for 60%+ of all observed malware and phishing campaigns

LexisNexis says hackers accessed legacy data in contained breach | The Record from Recorded Future News

Paint maker giant AkzoNobel confirms cyberattack on U.S. site

Threat actors weaponize OAuth redirection logic to deliver malware - Help Net Security

Ransomware attack exposes 1.2 million University of Hawaii Cancer Center records | news | SC Media

Huge “Shadow Layer” of Organizations Hit by Supply Chain Attacks - Infosecurity Magazine

A Possible US Government iPhone-Hacking Toolkit Is Now in the Hands of Foreign Spies and Criminals

Hacktivist group “Department of Peace” claims to have breached a DHS tech‑procurement office, leaking ICE contract records involving over 6,000 vendors, including major defense and surveillance firms

Fake Tech Support Spam Deploys Customized Havoc C2 Across Organizations

LLMs can unmask pseudonymous users at scale with surprising accuracy

The Banality of AI (Hallucination → Bomb School?)

UK reduces cyberattack fix times from two months to eight days - Help Net Security

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities | CyberScoop

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

Vulnerability Allowed Hijacking Chrome's Gemini Live AI Assistant - SecurityWeek

Malicious “RedAlert - Rocket Alerts” Application Targets Israeli Phone Calls, SMS, and User Information | Cloudflare

Pakistan’s Top News Channels Hacked and Hijacked With Anti-Military Messages

New AirSnitch attack bypasses Wi-Fi encryption in homes, offices, and enterprises

Hackers Weaponize Claude Code in Mexican Government Cyberattack - SecurityWeek

CISA warns that RESURGE malware can be dormant on Ivanti devices

ClawJacked Flaw Lets Malicious Sites Hijack Local OpenClaw AI Agents via WebSocket

Hackers Use 1Campaign to Hide Malicious Ads From Google Reviewers

900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks

Canadian Tire Data Breach Impacts 38 Million Accounts - SecurityWeek

Israel hacked BadeSaba, a popular Iranian prayer app with 5M+ installs on Google Play, to send messages urging Iranian military personnel to defect

Vshell: A Chinese-Language Alternative to Cobalt Strike - Censys

Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens

Hacking group begins leaking customer data in Dutch telecom Odido hack

Critical Juniper Networks PTX flaw allows full router takeover

Trend Micro warns of critical Apex One code execution flaws

European DYI chain ManoMano data breach impacts 38 million customers

Google API Keys Weren't Secrets. But then Gemini Changed the Rules. ◆ Truffle Security Co.

Ransomware payment rate drops to record low as attacks surge

UFP Technologies discloses data breach after cybersecurity incident | brief | SC Media

Conduent Says Hack Now Affects at Least 25 Million Patients

Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023

CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability

Cost of Insider Incidents Surges 20% to Nearly $20m - Infosecurity Magazine

Zyxel warns of critical RCE flaw affecting over a dozen routers

Unknown hacker used Claude to steal 150GB of Mexican government data, including 195M taxpayer records, in December 2025 and January 2026

Google disrupts Chinese-linked group UNC2814, which breached 53+ organizations across 42 countries and utilized Google Sheets to manage targeting and data theft

Malicious NuGet Package Targets Stripe Developers - Infosecurity Magazine

RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN

Self-spreading npm malware targets developers in new supply chain attack - Help Net Security

Phishing campaign targets freight and logistics orgs in the US, Europe

VMware Aria Operations Vulnerability Could Allow Remote Code Execution - SecurityWeek

Five security lessons from the FBI’s Washington Post raid

Infosec community panics as Anthropic rolls out Claude code security checker

ShinyHunters leak 12.4M CarGurus records after ransom threat

Connected cars can be hacked, research finds

Multiple Zero-Day Flaws in PDF Platforms Enable XSS and One-Click Attacks

Microsoft Copilot Ignored Sensitivity Labels, Processed Confidential Emails

Over 200K Australian Driver’s Licences Exposed in youX Cyber Breach

North Korean Lazarus Group Now Working With Medusa Ransomware

Leading Semiconductor Supplier Advantest Hit by Ransomware Attack - Infosecurity Magazine

Ad tech firm Optimizely confirms data breach after vishing attack

Spain arrests suspected hacktivists for DDoSing govt sites

Conduent Data Breach - Largest Data Breach in U.S. History As Ransomware Group Stolen 8 TB of Data

Google Chrome Emergency Security Update Patches Three High-Severity Vulnerabilities

ShinyHunters Allegedly Claim Breach of 21 Million Records from Odido

Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb

APT28 Targeted European Entities Using Webhook-Based Macro Malware

Hackers Hide Pulsar RAT Inside PNG Images in New NPM Supply Chain Attack

An AI coding bot took down Amazon Web Services - Ars Technica

CISA Adds Two Actively Exploited Roundcube Flaws to KEV Catalog

Amazon: AI-assisted hacker breached 600 Fortinet firewalls in 5 weeks

How Android Malware Makes Itself Unkillable and “Un”-Uninstallable | by carson12345 | Feb, 2026 | InfoSec Write-ups

Japanese tech giant Advantest hit by ransomware attack

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

How the US government, OpenAI and Persona spy on you through age verification.

France's Ministry of Economy disclosed that attackers used stolen official credentials to access FICOBA, the national bank account registry, exposing data on 1.2 million accounts

Dramatic Escalation Frequency and Power of in DDoS Attacks - Infosecurity Magazine

PayPal discloses data breach that exposed user info for 6 months

Mississippi medical center closes all clinics after ransomware attack

Texas sues TP-Link alleging Chinese government access to its devices

Data breach at media behemoth RTL Group exposes employee data, attackers claim

Meta patents AI that could keep you posting from beyond the grave

French Government Says 1.2 Million Bank Accounts Exposed in Breach - SecurityWeek