All Recent Posts

Internet Security

Why pure extortion is replacing traditional ransomware

May 23, 2026 add comment
Ransomware gangs are shifting from encryption to pure extortion, focusing on stolen data, reputational pressure, and stealthier attacks. Ransomware groups are quietly changing strategy in 2026. Instead of encrypting... Read more »
Internet Security

Ghostwriter Is Back, Using a Ukrainian Learning Platform as Bait to Hit Government Targets

May 23, 2026 add comment
Ghostwriter targeted Ukrainian government agencies with phishing emails delivering malware and Cobalt Strike payloads. The Belarus-nexus APT group Ghostwriter (also tracked as UAC-0057 and UNC1151) has resurfaced with a... Read more »
The Hacker News

Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development

May 23, 2026 add comment
Microsoft has unveiled two new open-source tools called RAMPART and Clarity to assist developers in better testing the security of artificial intelligence (AI) agents. RAMPART, short for Risk Assessment... Read more »
The Hacker News

When Identity is the Attack Path

May 23, 2026 add comment
Consider a cached access key on a single Windows machine. It got there the way most cached credentials do – a user logged in, and the key stored itself... Read more »
The Hacker News

Microsoft Warns of Two Actively Exploited Defender Vulnerabilities

May 23, 2026 add comment
Microsoft has disclosed that a privilege escalation and a denial-of-service flaw in Defender has come under active exploitation in the wild. The former, tracked as CVE-2026-41091, is rated 7.8... Read more »

First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups

May 23, 2026 add comment
Authorities in Europe and North America have announced the dismantling of a criminal virtual private network (VPN) service used by criminal actors to obscure the origins of ransomware attacks,... Read more »
The Hacker News

Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks

May 23, 2026 add comment
Microsoft on Tuesday said it disrupted a malware-signing-as-a-service (MSaaS) operation that weaponized the company’s Artifact Signing system to deliver malicious code and conduct ransomware and other attacks, compromising thousands... Read more »

Making Vulnerable Drivers Exploitable Without Hardware – The BYOVD Perspective

May 22, 2026 add comment
1 Introduction This article provides a technical analysis of how many Windows kernel mode drivers can be interacted with from user mode without the hardware they were developed for.... Read more »
Security of TechRepublic

Microsoft Warns: Windows Zero-Day ‘YellowKey’ Can Bypass BitLocker

May 22, 2026 add comment
Microsoft has released a temporary mitigation for YellowKey, a Windows zero-day that can reportedly bypass BitLocker protections. The post Microsoft Warns: Windows Zero-Day ‘YellowKey’ Can Bypass BitLocker appeared first... Read more »

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

May 22, 2026 add comment
Cisco has rolled out updates for a maximum-severity security flaw impacting Secure Workload that could allow an unauthenticated, remote attacker to access sensitive data. Tracked as CVE-2026-20223 (CVSS score:... Read more »
Subscribe to our Newsletter