Internet Security

SolarWinds patches four critical Serv-U flaws enabling root access

February 24, 2026 add comment
SolarWinds addressed four critical Serv-U vulnerabilities that could let attackers gain root access to unpatched servers. SolarWinds released updates fixing four critical Serv-U vulnerabilities that allow remote code execution,... Read more »

VMware Aria Operations flaws could enable remote attacks

February 24, 2026 add comment
Broadcom patched multiple VMware Aria Operations flaws, including high-severity issues that could enable remote code execution. Broadcom has released security updates to address multiple vulnerabilities affecting VMware Aria Operations.... Read more »

Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign

February 24, 2026 add comment
Arkanix Stealer surfaced in late 2025 as a short-lived info-stealer, likely built as an AI-assisted experiment and quickly abandoned. Arkanix Stealer emerged in late 2025 as a short-lived information-stealing... Read more »

Everest ransomware hits Vikor Scientific ‘s supplier, data of 140,000 patients stolen

February 24, 2026 add comment
Everest ransomware claims an attack on diagnostic firm Vikor Scientific (Vanta Diagnostics), exposing data of nearly 140,000 people. The Everest ransomware group has claimed responsibility for a cyberattack on... Read more »

Operation MacroMaze: APT28 exploits webhooks for covert data exfiltration

February 24, 2026 add comment
Russia-linked APT28 targeted European entities with a webhook-based macro malware campaign called Operation MacroMaze. Russia-linked APT28 (aka UAC-0001, aka Fancy Bear, Pawn Storm, Sofacy Group, Sednit, BlueDelta, and STRONTIUM) launched Operation MacroMaze, targeting select entities in... Read more »

Wormable XMRig campaign leverages BYOVD and timed kill switch for stealth

February 23, 2026 add comment
A wormable cryptojacking campaign spreads via pirated software, using BYOVD and a time-based logic bomb to deploy a custom XMRig miner. Researchers uncovered a wormable cryptojacking campaign that spreads... Read more »

Romanian hacker pleads guilty to selling access to Oregon state networks

February 23, 2026 add comment
A Romanian man pleaded guilty to selling admin access to Oregon’s state network for $3,000 in Bitcoin and repeatedly accessing it to prove control. Catalin Dragomir (45) from Romania,... Read more »

CVE-2026-1731 fuels ongoing attacks on BeyondTrust remote access products

February 23, 2026 add comment
Attackers are exploiting CVE-2026-1731 in BeyondTrust RS and PRA to deploy VShell, gain persistence, move laterally, and control compromised systems. Threat actors are actively exploiting a recently disclosed critical... Read more »

AI-powered campaign compromises 600 FortiGate systems worldwide

February 23, 2026 add comment
A Russian-speaking cybercriminal used commercial generative AI tools to hack over 600 FortiGate devices across 55 countries. Amazon Threat Intelligence reports that a Russian-speaking, financially motivated threat actor used... Read more »

Anthropic unveils Claude Code Security to detect and fix code bugs

February 23, 2026 add comment
Anthropic launches Claude Code Security, an AI tool that scans code for vulnerabilities and suggests how to address them. Anthropic has introduced Claude Code Security, a new AI-powered service... Read more »
Subscribe to our Newsletter