Cyber Security

Amazon Says AI Assisted Hacker Breached 600 Fortinet Firewalls in Five Weeks

Amazon has reported a global hacking campaign in which a Russian-speaking threat actor leveraged generative AI tools to breach more than 600 Fortinet FortiGate firewalls in 55 countries over five weeks. The attacks, carried out between January 11 and February 18, 2026, relied on weak credentials and exposed management interfaces rather than zero-day exploits, highlighting […]

Amazon Says AI Assisted Hacker Breached 600 Fortinet Firewalls in Five Weeks Read More »

PayPal Reveals Six Month Data Breach Exposing User Information

Digital payments giant PayPal has disclosed a data security incident that exposed sensitive customer information for nearly six months. The issue stemmed from a software error within its small business lending platform, raising renewed concerns about data governance, financial technology security, and regulatory compliance. Software Error Behind Prolonged Data Exposure According to PayPal, the incident

PayPal Reveals Six Month Data Breach Exposing User Information Read More »

Data Breach at French Bank Registry Affects 1.2 Million Accounts

France’s financial authorities have revealed a major cybersecurity breach affecting approximately 1.2 million bank account records. The incident targeted the country’s centralized bank account registry, raising serious concerns about data protection, identity theft, and financial fraud. Officials have launched a full investigation while strengthening national cybersecurity defenses. Unauthorized Access to National Bank Registry The French

Data Breach at French Bank Registry Affects 1.2 Million Accounts Read More »

Mississippi Medical Center Shuts Down All Clinics Following Ransomware Attack

A major healthcare provider in the United States has temporarily closed all its clinic locations following a disruptive cyberattack. The University of Mississippi Medical Center (UMMC) confirmed that a ransomware incident forced it to shut down multiple IT systems while emergency protocols were activated to maintain patient care. Authorities at the federal level are now

Mississippi Medical Center Shuts Down All Clinics Following Ransomware Attack Read More »

BeyondTrust Vulnerability Exploited to Deploy Web Shells, Backdoors, and Steal Data

A critical security flaw affecting BeyondTrust Remote Support and BeyondTrust Privileged Remote Access products is being actively exploited by threat actors to deploy web shells, backdoors, malware, and exfiltrate sensitive data. The vulnerability, tracked as CVE-2026-1731, carries a CVSS score of 9.9. Nature of the Vulnerability The flaw stems from a sanitization failure in the “thin-scc-wrapper” script, accessible via

BeyondTrust Vulnerability Exploited to Deploy Web Shells, Backdoors, and Steal Data Read More »

Cline CLI 2.3.0 Supply Chain Attack Deployed OpenClaw on Developer Systems

A recent software supply chain incident impacted the open source AI coding assistant Cline CLI, after attackers published a compromised version to the npm registry that silently installed OpenClaw on developer systems. On February 17, 2026 at 3:26 AM PT, an unauthorized party used a compromised npm publish token to release cline@2.3.0. The altered package included

Cline CLI 2.3.0 Supply Chain Attack Deployed OpenClaw on Developer Systems Read More »

ClickFix Campaign Exploits Compromised Websites to Deploy MIMICRAT Malware

Cybersecurity researchers have uncovered a sophisticated ClickFix campaign that leverages compromised legitimate websites to distribute a newly identified remote access trojan named MIMICRAT, also referred to as AstarionRAT. According to Elastic Security Labs, the operation demonstrates significant technical maturity. Attackers are using breached websites across various industries and regions as delivery infrastructure, deploying a multi stage

ClickFix Campaign Exploits Compromised Websites to Deploy MIMICRAT Malware Read More »

Ukrainian National Sentenced to 5 Years in North Korea IT Worker Fraud Scheme

A 29 year old Ukrainian citizen has been sentenced to five years in a U.S. federal prison for helping facilitate North Korea’s fraudulent IT worker operation that infiltrated dozens of American companies. Oleksandr “Alexander” Didenko pleaded guilty in November 2025 to wire fraud conspiracy and aggravated identity theft. Authorities say he stole the identities of

Ukrainian National Sentenced to 5 Years in North Korea IT Worker Fraud Scheme Read More »

FBI Reports 1,900 ATM Jackpotting Incidents Since 2020, $20M Lost in 2025

The Federal Bureau of Investigation (FBI) has issued a fresh warning about the surge in ATM jackpotting attacks across the United States, revealing that financial losses exceeded $20 million in 2025 alone. According to federal data, approximately 1,900 jackpotting incidents have been reported since 2020, with 700 of those occurring in 2024. In December 2025, the U.S. Department

FBI Reports 1,900 ATM Jackpotting Incidents Since 2020, $20M Lost in 2025 Read More »

Former Google Engineers Indicted for Transferring Trade Secrets to Iran

Two former engineers from Google and the husband of one of them have been indicted in the United States for allegedly stealing sensitive trade secrets from major technology firms and transferring the information to unauthorized destinations, including Iran. The defendants, Samaneh Ghandali, 41, her husband Mohammadjavad Khosravi, also known as Mohammad Khosravi, 40, and her sister Soroor

Former Google Engineers Indicted for Transferring Trade Secrets to Iran Read More »