Bitfinex Hack Convict Gains Early Release Via First Step Act
Ilya Lichtenstein, convicted in the $71 million 2016 Bitfinex hack, was released to home confinement, highlighting the impact of the First Step Act.
Read more
AI NewsCybersecurityInsurance
CISOs Face a Tighter Insurance Market in 2026
Cyber insurance rates are stabilizing after a period of softening, with experts predicting a 15% increase in global cyber premiums in 2026.
Read more
AI NewsCybersecurityMalware
Kimwolf Android Botnet Infects Over 2 Million Devices via Exposed ADB and Proxy Networks
Kimwolf is an Android botnet that infected 2M+ devices via exposed ADB, using proxy networks to run DDoS attacks and sell residential bandwidth.
Read more
AI NewsCybersecurityMalware
VVS Stealer Malware Targets Discord Accounts with Python Obfuscation
VVS Stealer, a Python-based malware sold for as little as $11.69, steals Discord tokens, browser data, and credentials using Pyarmor obfuscation.
Read more
AI NewsCybersecurityIoT
RondoDox Botnet Expands Scope With React2Shell Exploitation
The RondoDox botnet is exploiting the React2Shell vulnerability (CVE-2025-55182) to compromise Next.js servers, resulting in cryptomining and botnet payloads.
Read more
AI NewsCybersecurityThreat Intelligence
Russia-Aligned Hackers Abuse Viber for Ukrainian Espionage
Russia-aligned UAC-0184 leverages Viber to deliver Hijack Loader and Remcos RAT, impacting Ukrainian military and government systems.
Read more
AI NewsCybersecurityCloud Security
Startup Trends Shaking Up Browsers, SOC Automation, AppSec
Emerging startups are redefining browser security with MV3 extensions, pioneering application security for AI-generated code, and challenging the economics of human SOC analysts.
Read more
AI NewsCybersecurityCloud Security
Cybersecurity in 2025: Shift to Hardware Trust and AI-Driven Defense
Cybersecurity is evolving to prioritize hardware-backed authentication and AI-driven defense, responding to faster attacker velocity across cloud and endpoint environments.
Read more
AI NewsCybersecurityRansomware
US Cyber Pros Plead Guilty Over BlackCat Ransomware Activity
Two US cybersecurity professionals pleaded guilty to ransomware activity as ALPHV/BlackCat affiliates in 2023, highlighting an insider threat.
Read more
AI NewsCybersecurityIncident Response
4 Outdated Habits Destroying Your SOC's MTTR in 2026
In 2026, leading SOCs reduce MTTR by 21 minutes per incident by using automated, behavior-based analysis.
Read more
AI NewsCybersecurityHomelab
My Cybersecurity Homelab: A Hands-On Journey into Defensive and Offensive Operations
A personal cybersecurity lab was built using readily available hardware to provide practical experience in defensive and offensive security operations.
Read more
AI NewsCybersecurityCloud Security
CTO New Year Resolutions for a More Secure 2026
CTOs must prioritize AI governance, MCP security, supply chain hardening, security/engineering alignment, and post-quantum realities in 2026.
Read more
AI NewsCybersecurityCloud Security
Cybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing Campaign
Attackers misused Google Cloud Application Integration to send 9,394 phishing emails from Google domains, bypassing filters and stealing credentials.
Read more
AI NewsCybersecurityRisk Management
The ROI Problem in Attack Surface Management
Attack surface management ROI improves when ownership, exposure duration, and risky endpoints decline—not when asset counts rise.
Read more
AI NewsCybersecurityAPT
Transparent Tribe APT Launches New Cyber-Espionage Attacks Against India
Transparent Tribe (APT36) is deploying advanced RATs via malicious LNK files in a sustained cyber-espionage campaign targeting Indian government and academic institutions.
The first ThreatsDay Bulletin of 2026 tracks GhostAd adware, impacting millions of Android devices, alongside macOS malware and emerging cyber threats.
Read more
AI NewsCloudCybersecurity
Cloudflare Year in Review: AI Bots Drive Traffic, Post-Quantum Encryption Surpasses 50%
Cloudflare’s 2025 Year in Review reveals a 19% increase in global internet traffic, alongside aggressive crawling by AI bots and a surge in post-quantum encryption to 50%.
Read more
AI NewsCybersecurityEconomics
AI Skepticism Rises as ROI Doubts and Economic Fears Mount
Growing concerns about an AI economic bubble and unrealized return on investment are fueling a surge in skepticism towards the technology.
Read more
AI NewsCybersecurityAPI Security
Critical CVSS 9.8 Flaw Found in IBM API Connect Authentication System
IBM disclosed a critical CVSS 9.8 authentication bypass vulnerability in IBM API Connect, potentially allowing remote access; patches are available.
Read more
AI NewsCybersecurityThreat Intelligence
DarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users Worldwide
A China-linked threat actor compromised 8.8 million users over seven years with malicious browser extensions designed for data theft and corporate espionage.
Omdia predicts a surge in agentic AI-related identity breaches, increased IGA adoption in mid-market firms, and closer SOC-Identity team collaboration by 2026.
Read more
AI NewsCybersecuritySoftware Supply Chain
New Shai-Hulud Strain and Fake Jackson Package Target Developers
Researchers discovered a modified Shai-Hulud npm worm and a malicious Jackson Maven package, highlighting ongoing supply chain attacks targeting developer credentials.
Read more
AI NewsCybersecurityVulnerability Management
Sunken Ships: Learning From Ivanti EPMM Attacks
The Ivanti EPMM zero-day attacks in Spring 2025 compromised thousands of organizations via a simple GET request, highlighting critical risks in endpoint management systems.