State-linked actors targeted US networks in lead-up to Iran war
State-linked threat groups and hacktivists are accelerating threat activity against the U.S. and allied countries since a widespread bombing campaign began in late February against Iranian military and government assets. An Iran-linked advanced persistent threat group tracked as Seedworm has been spotted on the networks of several U.S. companies, according to a blog post published Thursday from researchers at Symantec and Carbon Black. READ MORE...
FBI warns of phishing attacks impersonating US city, county officials
The Federal Bureau of Investigation (FBI) warns that criminals are impersonating U.S. officials in phishing attacks targeting businesses and individuals who request city and county planning and zoning permits. In a public service announcement published on Monday, the bureau said that the criminals behind this campaign are identifying potential victims using publicly available information, which also makes their malicious messages seem legitimate and helps them trick suspicious targets. READ MORE...
EV charger biz ELECQ zapped by ransomware crooks, customer contact data stolen
ELECQ, maker of smart electric vehicle (EV) chargers, is warning customers that their personal details may have been stolen in a ransomware attack that encrypted and copied user data from its cloud systems. In a notice sent to customers on Monday and seen by The Register, the EV charging outfit said that it detected "unusual activity" on its AWS cloud platform on March 7 and quickly discovered that attackers had launched a ransomware attack against parts of its infrastructure. READ MORE...
Ericsson US discloses data breach after service provider hack
Ericsson Inc., the U.S. subsidiary of Swedish networking and telecommunications giant Ericsson, says attackers have stolen data belonging to over 15,000 employees and customers after hacking one of its service providers. Headquartered in Stockholm and founded in 1876, the parent company is a communications tech leader with nearly 90,000 employees worldwide. In data breach notification letters sent to affected individuals and filed with the California Attorney General on Monday. READ MORE...
Signal and WhatsApp accounts targeted in phishing campaign
Dutch intelligence services AIVD and MIVD warn that Russian state-backed hackers are running a large-scale campaign to break into Signal and WhatsApp accounts of high-value targets. The targets are said to be senior officials, military personnel, civil servants, and journalists. The attackers are not breaking end-to-end encryption or exploiting a vulnerability in the apps themselves. Instead, they rely on proven phishing and social engineering methods to trick users. READ MORE...
Teen crew caught selling DDoS attack tools
Seven minors who distributed online programs designed to facilitate DDoS attacks have been identified by Poland's Central Bureau for Combating Cybercrime (CBZC). They were between 12 and 16 at the time of the crime. According to investigators, using the tools they administered, the minors attacked popular websites, including auction and sales portals, IT domains, hosting services and accommodation booking sites. READ MORE...
This spy tool has been quietly stealing data for years
ESET researchers have traced the resurgence of Sednit through a modern toolkit built around two complementary implants, BeardShell and Covenant, each relying on a separate cloud provider to ensure operational resilience. This dual-implant architecture has enabled sustained surveillance of Ukrainian military personnel since at least April 2024. The Sednit group itself was tied to Unit 26165 of the GRU by the US Department of Justice in 2016. READ MORE...
AI vs AI: Agent hacked McKinsey's chatbot and gained full read-write access in just two hours
Researchers at red-team security startup CodeWall say their AI agent hacked McKinsey's internal AI platform and gained full read and write access to the chatbot in just two hours. It's yet another indicator that agentic AI is becoming a more effective tool for conducting cyberattacks, including those against other AI systems. This attack wasn't conducted with malicious intent. However, threat hunters tell us that miscreants are increasingly using agents in real-world attacks. READ MORE...
Hundreds of Salesforce Customers Allegedly Targeted in New Data Theft Campaign
Salesforce has issued another warning to customers as the notorious ShinyHunters cybercrime group has announced a new campaign involving data theft and extortion. Since mid-2025, ShinyHunters has been targeting the Salesforce instances of many organizations using social engineering and other tactics. The incidents disclosed last year resulted in millions of data records being compromised and leaked by ShinyHunters. READ MORE...
Recent Ivanti Endpoint Manager Flaw Exploited in Attacks
The US cybersecurity agency CISA on Tuesday expanded its Known Exploited Vulnerabilities (KEV) catalog with another Ivanti bug, urging its immediate patching. The issue, tracked as CVE-2026-1603 (CVSS score of 8.6), is a high-severity authentication bypass vulnerability in Ivanti Endpoint Manager that could be exploited to leak credential data. Impacting all Endpoint Manager iterations before version 2024 SU5, the security defect was patched in early February. READ MORE...
- ...in 1876, the first discernible speech is transmitted over a telephone system by inventor Alexander Graham Bell.
- ...in 1971, actor Jon Hamm ("Mad Men", "Unbreakable Kimmy Schmidt") is born in St. Louis, MO.
- ...in 1977, astronomers James Elliot, Edward Dunham, and Jessica Mink definitively confirm that the planet Uranus has rings.
- ...in 2000, the NASDAQ Composite index peaks at 5,048.62, marking the beginning of the end for the early online boom known as the "Dot-com bubble."
