The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.
05.03.2026 15:42 — 👍 12 🔁 9 💬 1 📌 0
The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.
05.03.2026 15:42 — 👍 12 🔁 9 💬 1 📌 0
The FBI has seized the LeakBase cybercrime forum, a major online forum used by cybercriminals buy and sell hacking tools and stolen data.
04.03.2026 12:45 — 👍 6 🔁 4 💬 0 📌 0
SCOOP: An internal DHS document obtained by 404 Media shows for the first time CBP used location data sourced from the online advertising industry to track phone locations.
This surveillance can happen through all sorts of apps, such as video games, news apps, weather trackers, and dating apps.
Amazon has confirmed that three Amazon Web Services (AWS) data centers in the United Arab Emirates (UAE) and one in Bahrain have been damaged by drone strikes, causing an extensive outage that is still affecting dozens of cloud computing services.
03.03.2026 06:45 — 👍 18 🔁 5 💬 0 📌 1
Seeing the lengthy list of changes/cutbacks to CISA catalogued in this one piece makes it clear there is little left of it. The agency is less than a decade old and struggled for years to find its footing before it started to make progress. But all advances it made have been gutted in last 12 months
27.02.2026 16:45 — 👍 22 🔁 13 💬 0 📌 1
In an unexpected twist of events, Meta says they're taking legal action "to combat scams" and filed "lawsuits against deceptive advertisers in Brazil and China that used celeb-bait and a Vietnam-based advertiser who used cloaking and led a subscription fraud scheme."
about.fb.com/news/2026/02...
Cisco is warning that a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN, tracked as CVE-2026-20127, was actively exploited in zero-day attacks that allowed remote attackers to compromise controllers and add malicious rogue peers to targeted networks.
25.02.2026 13:02 — 👍 4 🔁 2 💬 0 📌 0
Two stories next to each other: from CNN 'Pentagon threatens to make Anthropic a pariah if it refuses to drop Al guardrails', and from New Scientist: 'Als can't stop recommending nuclear strikes in war game simulations Leading Als from OpenAl, Anthropic and Google opted to use nuclear weapons in simulated war games in 95 per cent of cases'
Just leaving these two stories next to each other.:
'AIs can’t stop recommending nuclear strikes in war game simulations' & 'Pentagon threatens to make Anthropic a pariah if it refuses to drop AI guardrails'
www.newscientist.com/article/2516... edition.cnn.com/2026/02/24/t...
Weird cyber story from Russia: a Moscow resident Ruslan Satuchin faces criminal charges for allegedly contacting Conti under the pretense of the FSB & extorting money for protection. Now he's investigated for fraud
No word of legal action against Conti
www.rbc.ru/society/25/0...
It's been a year since North Korean hackers stole $1.5 billion from Bybit, and they completely got away with it, ha ha ha.
Bybit exploit 12 months on: the DPRK threat continues
www.elliptic.co/blog/bybit-e...
Google disrupts Chinese-linked hackers that attacked 53 groups globally - www.reuters.com/sustainabili...
25.02.2026 11:51 — 👍 12 🔁 7 💬 0 📌 0
Some breaking news out of Russia: Officials have started an investigation into Telegram founder Pavel Durov for promoting terrorism
www.kommersant.ru/doc/8460981?...
PayPal is notifying customers of a data breach after a software error in a loan application exposed their sensitive personal information, including Social Security numbers, for nearly 6 months last year.
20.02.2026 08:12 — 👍 27 🔁 16 💬 0 📌 3
As part of its internet crackdown, it appears that Russia's internet watchdog accidentally blocked the official website of the Linux kernel.
The block has been lifted after Russian IT engineers reminded Roskomnadzor that the country's native OS also runs on Linux
kod.ru/linux-rus-fail
The European Commission is investigating a breach after finding evidence that its mobile device management platform was hacked.
09.02.2026 04:49 — 👍 8 🔁 6 💬 0 📌 0
French prosecutors have raided X's offices in Paris on Tuesday as part of a criminal investigation into the platform's Grok AI tool, widely used to generate sexually explicit images.
03.02.2026 07:43 — 👍 13 🔁 5 💬 0 📌 1
The data breach notification service Have I Been Pwned says that a data breach at the U.S. food chain Panera Bread affected 5.1 million accounts, not 14 million customers as previously reported.
02.02.2026 08:46 — 👍 6 🔁 4 💬 0 📌 0
Microsoft announced that it will disable the 30-year-old NTLM authentication protocol by default in upcoming Windows releases due to security vulnerabilities that expose organizations to cyberattacks.
30.01.2026 12:09 — 👍 17 🔁 5 💬 0 📌 1
The FBI has seized the notorious RAMP cybercrime forum, a platform used to advertise a wide range of malware and hacking services, and one of the few remaining forums that openly allowed the promotion of ransomware operations.
28.01.2026 12:38 — 👍 6 🔁 1 💬 0 📌 0
Hackers behind cyberattack against Poland electric grid in Dec disabled communication devices for at least 30 sites across a number of energy facilities in country. They rendered the devices - known as remote terminal units or RTUs - not only inoperable but also unrecoverable
28.01.2026 14:53 — 👍 26 🔁 23 💬 1 📌 2
SolarWinds has released security updates to patch critical authentication bypass and remote command execution vulnerabilities in its Web Help Desk IT help desk software.
28.01.2026 09:39 — 👍 7 🔁 5 💬 0 📌 1
Hackers have stolen the personal and contact information belonging to over 29.8 million SoundCloud user accounts after breaching the audio streaming platform's systems.
27.01.2026 07:25 — 👍 9 🔁 8 💬 0 📌 1
Microsoft has released emergency security updates to patch a high-severity Office zero-day vulnerability exploited in attacks.
26.01.2026 13:20 — 👍 8 🔁 3 💬 0 📌 0
Something of note I found in researching this:
ICE's Homeland Security Investigations unit has tried and failed to break into BitLocker devices. It simply doesn't have the capability, per an HSI forensic specialist's letter to a court in 2025.
But we now know it can ask Microsoft for help.
#BREAKING #ESETresearch identified the wiper #DynoWiper used in an attempted disruptive cyberattack against the Polish energy sector on Dec 29, 2025. At this point, no successful disruption is known, but the malware’s design clearly indicates destructive intent. 1/5
23.01.2026 16:30 — 👍 35 🔁 30 💬 1 📌 5
Food delivery platform Grubhub has confirmed a recent data breach after hackers accessed its systems, with sources telling BleepingComputer the company is now facing extortion demands.
15.01.2026 16:39 — 👍 6 🔁 4 💬 1 📌 1
CISA’s secure-software buying tool had a simple XSS vulnerability of its own
cyberscoop.com/cisa-secure-...
A single click on what may appear to be a Telegram username or harmless link is all it takes to expose your real IP address to attackers due to how proxy links are handled. Telegram says it will add warnings to proxy links after researchers demonstrated that such one-click interactions could rev ...
12.01.2026 11:21 — 👍 9 🔁 4 💬 0 📌 0
The European Space Agency (ESA) confirmed that attackers recently breached servers outside its corporate network.
www.bleepingcomputer.com/news/securit...
