Inside Mistic, the New Stealth Backdoor in Ransomware Intrusions

Mistic is a stealthy backdoor used by KongTuke-linked actors to keep long-term access in ransomware-targeted networks. Mistic is the kind of backdoor that tells you the operator wants time,... Read more »

Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root

Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME).... Read more »

Europol, Microsoft Hit Malware Network Behind 27M Stolen Logins, 140,000 Infected Computers

Europol and Microsoft disrupted malware infrastructure linked to 27 million stolen login credentials and 140,000 infected computers in a global cybercrime network. The post Europol, Microsoft Hit Malware Network... Read more »

Canvas breach hit 160 UK unis but caused limited damage

The April 2026 ShinyHunters breach of the Canvas learning management system caused downstream impacts at more than 150 higher education institutions in the UK, but the damage appears to... Read more »

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited Months Before Disclosure

Hackers exploited Cisco Catalyst SD-WAN flaw CVE-2026-20245 as a zero-day months before disclosure, enabling privileged command execution. Google-owned Mandiant reported that an unknown threat actor exploited Cisco Catalyst SD-WAN... Read more »

Nathan Austad Pleads Guilty in DraftKings Hacking Scheme, Gets 18 Months

Third DraftKings hacker gets 18 months in prison for a 2022 credential-stuffing attack that compromised 1,600 accounts and stole $600,000. Nathan Austad, the third person sentenced over the 2022... Read more »

EU proposes tech-backed expansion of Europol policing agency

Enhanced powers to collect and share data are at the heart of EU plans to expand Europol, putting it at loggerheads with human rights groups Read more »

LastPass Confirms Vendor Breach Exposed Customer Contact, Support Data

LastPass said customer contact and support data were exposed after attackers used stolen Klue OAuth tokens to access its Salesforce environment and CRM records. The post LastPass Confirms Vendor... Read more »

Apple’s £3B iCloud Lawsuit Could Affect 40M UK Users

Apple lost a bid to narrow a UK iCloud lawsuit from Which?, keeping a £3 billion competition claim on track for an October 2028 trial. The post Apple’s £3B... Read more »

Healthcare Vendor Xsolis Reports Breach Affecting 1.4M People

Xsolis confirmed a healthcare data breach affecting nearly 1.4 million people after a phishing attack exposed health and identity data. The post Healthcare Vendor Xsolis Reports Breach Affecting 1.4M... Read more »
Subscribe to our Newsletter