Posts

May 20, 2026 23:00

Dozens of Israeli Business Sites Defaced by Iranian Actors

Dozens of Israeli business websites have been defaced with an Iranian message, according to Cyber News - Erez Dasa. The defacements included a demand for...

israel

May 20, 2026 21:55 /SCW Threat Desk /MEDIUM

LΣҒΔ𝕽ΩLL 🇮🇱 Exposes Sophisticated Social Engineering Tactics

LΣҒΔ𝕽ΩLL 🇮🇱 highlights a sophisticated phishing approach that bypasses fear-based triggers. Instead of alarming users, this method aims to create a sense of urgency and...

May 20, 2026 21:02 /SCW Threat Desk /MEDIUM

FTC Warns 12 Major Tech Firms Over Take It Down Act Violations

The Federal Trade Commission (FTC) has issued warnings to 12 prominent technology companies for alleged violations of the Take It Down Act. This legislation mandates...

threat-inteldata-breachgovernment

May 20, 2026 20:29 /SCW Research /MEDIUM

Ukraine Probes Teen Suspect in US E-commerce Cyber Theft

Ukrainian authorities are investigating a teen suspect in a cyber theft scheme targeting online shoppers in California, according to The Record by Recorded Future. This...

threat-inteldata-breachgovernment

May 20, 2026 19:33 /SCW Research /MEDIUM

Discord Enables End-to-End Encryption by Default

Discord has begun migrating all users to end-to-end encryption (E2EE) by default, a significant move for a major communication platform. This decision stands in stark...

threat-inteldata-breachgovernment

May 20, 2026 19:29 /SCW Research /MEDIUM

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

Grafana Breach: Missed Token Rotation After TanStack Supply Chain Attack

BleepingComputer reports that the recent Grafana data breach stemmed from a single GitHub workflow token that was not rotated following the TanStack npm supply-chain attack....

threat-inteldata-breachmalwaretools

May 20, 2026 18:46 /SCW Research /MEDIUM /⚙ 3 Sigma

Identity Alone Isn't Enough: Device Security Must Share the Load

BleepingComputer highlights a critical shift in Zero Trust strategy: identity checks are no longer sufficient to secure access. Attackers are increasingly bypassing traditional identity verification...

threat-inteldata-breachmalwareidentity

May 20, 2026 17:02 /SCW Research /MEDIUM

Crypto ATM Scams Cost Millions in Texas, Florida

Fraudsters are siphoning millions through cryptocurrency ATMs, with Texas and Florida reporting the highest losses. The Record by Recorded Future found that victims are often...

threat-inteldata-breachgovernment

May 20, 2026 16:04 /SCW Research /MEDIUM

Cyera Acquires 5-Month-Old Cybersecurity Startup for $50 Million

Cybersecurity firm Cyera has acquired a five-month-old startup for an estimated $50 million, according to Cyber News - Erez Dasa. The acquired company, which had...

israel

May 20, 2026 15:48 /SCW Threat Desk /MEDIUM

GitHub Confirms Breach by TeamPCP, Customer Data Unaffected

GitHub confirmed a breach by the threat actor TeamPCP, following TeamPCP's advertisement of stolen source code on a cybercrime forum. According to The Record by...

threat-inteldata-breachgovernmenttools

May 20, 2026 15:21 /SCW Research /MEDIUM /⚙ 3 Sigma

CISA Pressed on Nightwing GitHub Leak by Senator Hassan

U.S. Senator Maggie Hassan has formally pressed CISA for answers regarding an alleged data leak involving government contractor Nightwing. The incident, initially reported by cybersecurity...

threat-inteldata-breachgovernmenttools

May 20, 2026 15:11 /SCW Research /HIGH /⚙ 3 Sigma

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

Disable ICMP redirects

Thinking a Man-in-the-Middle (MitM) attack only happens over Wi-Fi? Think again. Your Linux servers, if not properly configured, can be tricked into redirecting traffic right...

lockdown-labhardeninglinuxnetwork

May 20, 2026 13:26 /Shimi Cohen

TamperedChef Malware Uses Trojanized Apps and Malvertising for Stealthy Delivery

Palo Alto Unit 42's analysis reveals TamperedChef, a sophisticated malware operation leveraging trojanized productivity applications and malvertising campaigns. These tactics are designed to slip past...

threat-intelAPTmalwareresearchunit-42

May 20, 2026 13:00 /SCW Research /MEDIUM

GitHub Confirms 3,800 Repos Breached via Malicious VSCode Extension

GitHub has confirmed a significant breach affecting approximately 3,800 internal repositories. This incident stemmed from a GitHub employee installing a malicious VS Code extension. The...

threat-inteldata-breachmalwaretools

May 20, 2026 11:14 /SCW Research /MEDIUM /⚙ 3 Sigma

Holidays and Long Weekends: Prime Time for Cyber Attacks

Cyber News - Erez Dasa highlights a critical vulnerability for organizations during holidays and long weekends: reduced staffing and slower incident response. While businesses slow...

israelmicrosoft

May 20, 2026 10:03 /SCW Threat Desk /MEDIUM

GitHub Investigates Source Code Theft Claims by TeamPCP

GitHub is currently investigating claims of source code theft following an assertion by the group TeamPCP. Cyber News - Erez Dasa reports that TeamPCP has...

israel

May 20, 2026 07:33 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Crypto ATM Scams Surge: Over $388M Lost in US

Crypto ATM scams continue to break records in the U.S., with the FBI reporting over $388 million lost by Americans in 2025. This figure stems...

israel

May 20, 2026 07:20 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

Featured

Daily Security Digest — 2026-05-19

14 vulnerability disclosures (5 Critical, 9 High) and 7 curated intelligence stories from 4 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycwe-1392remote-code-executioncwe-917cwe-94code-execution

May 19, 2026 23:00 /SCW Daily Digest /CRITICAL

FBI: Crypto ATM Scams Cost Americans $388M in 2025

The FBI reports a staggering $388 million lost by Americans to cryptocurrency ATM scams throughout 2025. These scams frequently leverage social engineering, tricking victims into...

threat-inteldata-breachmalwarebleepingcomputer

May 19, 2026 22:45 /SCW Research /MEDIUM

UK Regulator Mandates Tech Firms Tackle Deepfakes and Non-Consensual Intimate Images

The UK regulator is imposing new requirements on tech firms to combat the proliferation of deepfakes and non-consensual intimate imagery. This move, driven by an...

threat-inteldata-breachgovernment

May 19, 2026 19:57 /SCW Research /MEDIUM

Microsoft Disrupts Fox Tempest Malware-Signing-as-a-Service

Microsoft has unsealed a legal case detailing the disruption of Fox Tempest, a significant malware-signing-as-a-service platform. According to The Record by Recorded Future, this service,...

threat-inteldata-breachgovernmentmalwareransomwaremicrosofttools

May 19, 2026 19:36 /SCW Research /MEDIUM

Microsoft Blames Undismissible Teams Location Prompts on macOS Update

Microsoft has acknowledged reports of its Teams collaboration app displaying persistent, undismissible location prompts on certain macOS systems. According to BleepingComputer, Microsoft attributes this issue...

threat-inteldata-breachmalwaremicrosoft

May 19, 2026 19:10 /SCW Research /MEDIUM

7-Eleven Confirms Breach by ShinyHunters Extortion Gang

7-Eleven has confirmed a data breach, following claims made by the ShinyHunters extortion group last month, according to *BleepingComputer*. While specific details regarding the compromised...

threat-inteldata-breachmalware

May 19, 2026 17:16 /SCW Research /HIGH /⚙ 2 Sigma

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

OAuth Phishing Campaign Mimics Spotify Using "Profit" Platform

Cyber News - Erez Dasa reports on a new phishing campaign exploiting the "Profit" platform to impersonate Spotify. The emails originate from a "Profit" domain...

israelidentityphishing

May 19, 2026 16:08 /SCW Threat Desk /MEDIUM

Enable Azure Disk Encryption

Think your data in Azure is safe just because it's "in the cloud"? Think again. If your VM disks aren't encrypted at rest with ADE,...

lockdown-labhardeningazureencryption

May 19, 2026 13:39 /Shimi Cohen

New Phishing Campaign Uses Fake 'CEO Mandate' for Email Signature

A new phishing campaign, identified by Cyber News - Erez Dasa, is currently circulating, leveraging a deceptive email that purports to be from a CEO....

israel

May 19, 2026 09:43 /SCW Threat Desk /MEDIUM

Chanhassen Dinner Theatres Suspend Shows After Ransomware Attack

Chanhassen Dinner Theatres in the US has temporarily suspended performances following a cyberattack on its systems. According to Cyber Updates - Asher Tamam, management proactively...

israelmalwareransomware

May 19, 2026 07:42 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Mini Shai Hulud Campaign Hits AntV npm Packages, Echarts-for-React Affected

The Mini Shai Hulud campaign continues its aggressive activity, now targeting AntV's npm libraries. Cyber News - Erez Dasa reports that this includes the `echarts-for-react`...

israel

May 19, 2026 07:35 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Audio Prompt Injection Attack: AudioHijack Bypasses Voice AI Defenses

While prompt injection has become a common concern, a new attack vector, dubbed AudioHijack, introduces the concept of audio prompt injection. As reported by LΣҒΔ𝕽ΩLL...

ai-security

May 19, 2026 07:33 /SCW Threat Desk /MEDIUM

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

CTT Data Breach Exposes 468K Portuguese Accounts

In April 2026, data allegedly sourced from CTT, Portugal's national postal service, surfaced on a public hacking forum. Have I Been Pwned reported that this...

data-breach

May 19, 2026 03:28 /SCW Research /HIGH /⚙ 3 Sigma

Addi Fintech Breach: 34 Million Accounts Exposed by ShinyHunters

In March 2026, the Colombian fintech Addi reported unauthorized activity on its platform, cautioning customers about potential personal information compromise. The "pay or leak" group...

data-breachidentity

May 18, 2026 23:55 /SCW Research /HIGH /⚙ 3 Sigma

Middle East Cyber Raids Net 200+ Scam Network Arrests

Law enforcement agencies, in a coordinated effort, recently arrested over 200 individuals linked to cyber scam networks operating in the Middle East. The raids uncovered...

threat-inteldata-breachgovernment

May 18, 2026 23:52 /SCW Research /MEDIUM

Featured

Daily Security Digest — 2026-05-18

12 vulnerability disclosures (3 Critical, 9 High) and 30 curated intelligence stories from 10 sources.

daily-digestvulnerabilityCVEhigh-severitysql-injectioncwe-74cwe-89cross-site-scripting-xsscwe-79cwe-200

May 18, 2026 23:00 /SCW Daily Digest /CRITICAL

Cloudflare Leverages AI for Code Review, Finds Critical Security Flaws

Cyber News - Erez Dasa highlighted Cloudflare's recent findings on using AI agents for code review. Over a 30-day period, Cloudflare executed 131,246 code scans...

israelcloud

May 18, 2026 22:02 /SCW Threat Desk /MEDIUM

UK Schools Face Extortion After AI Generates Deepfake Child Pornography

Schools in England are removing student photos from official websites and social media after attackers leveraged them for extortion. Cyber News - Erez Dasa reports...

israel

May 18, 2026 21:10 /SCW Threat Desk /MEDIUM

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

Iran Threatens Global Internet with Strait of Hormuz Toll Demands

LΣҒΔ𝕽ΩLL 🇮🇱 reports that Iran is demanding transit fees from major technology companies for internet cables passing through the Strait of Hormuz and the Persian...

May 18, 2026 21:01 /SCW Threat Desk /MEDIUM

Grafana Refuses Ransom Payment After Codebase Theft

Grafana has confirmed a breach where attackers stole source code from its GitHub repositories. Despite the theft, the company has publicly stated its refusal to...

threat-inteldata-breachgovernmentransomwaretools

May 18, 2026 20:50 /SCW Research /MEDIUM /⚙ 3 Sigma

Leaked Shai-Hulud Malware Fuels New npm Infostealer Campaigns

The recently leaked Shai-Hulud malware is now actively being leveraged in new attacks targeting the Node Package Manager (npm) index. BleepingComputer reports that infected npm...

threat-inteldata-breachmalwarebleepingcomputer

May 18, 2026 20:28 /SCW Research /MEDIUM

OpenAI ChatGPT Financial Account Integration Raises Major Privacy Concerns

OpenAI's recent announcement to integrate ChatGPT with users' financial accounts for personal finance advice is a serious red flag. The Record by Recorded Future highlights...

threat-inteldata-breachgovernmentai-security

May 18, 2026 19:10 /SCW Research /MEDIUM

Bangladesh Government Customs Database Exposed on Darknet

DARKFEED reports a significant data breach involving a Bangladesh Government Customs database, which has been exposed and is now accessible on the darknet. This incident...

darkwebthreat-intelransomwaredata-breach

May 18, 2026 17:42 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Grafana Codebase Stolen via GitHub Token Compromise

Grafana Labs recently disclosed a significant breach of its GitHub environment, where attackers successfully exfiltrated the company's source code. According to BleepingComputer, the breach was...

threat-inteldata-breachmalwaretools

May 18, 2026 16:46 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

SCW Elite

Want early alerts?

Get exclusive analysis, detection rules, and IOC feeds

Get Protected →

Anthropic Mythos Powers macOS M5 LPE Exploit Chain

Calif researchers, leveraging Anthropic's Mythos Preview AI, successfully developed a macOS LPE (Local Privilege Escalation) exploit chain for Apple M5 silicon in just five days....

May 18, 2026 16:45 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Tabiq Hotel Platform Leaks 1 Million Passports and IDs via AWS S3

A critical misconfiguration in the Reqrea's Tabiq hotel check-in system has exposed over one million sensitive guest documents, including passports, driver's licenses, and selfie verification...

threat-inteldata-breachmalwarecloudidentity

May 18, 2026 16:02 /SCW Research /HIGH /⚙ 2 Sigma

7-Eleven Data Leak: ShinyHunters Sells Stolen Data for $250,000

Retail giant 7-Eleven has confirmed a data breach after the ShinyHunters threat group advertised stolen data on their leak site. According to Cyber News -...

israel

May 18, 2026 14:41 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Enable GuardDuty

Think about the last time you saw a breach report where an attacker lingered in an AWS account for weeks, undetected. This isn't theoretical. It's...

lockdown-labhardeningawslogging

May 18, 2026 14:09 /Shimi Cohen

Israeli Banking Sector: Cyber Risk Tops CISO Concerns for 2025

The Israeli banking sector's C-suite is, predictably, most concerned about cyber risk heading into 2025. This isn't a surprise; it's a reflection of the unrelenting...

israel

May 18, 2026 10:43 /SCW Threat Desk /MEDIUM

Microsoft MDASH AI Tool Outperforms Mythos, Finds 16 Vulnerabilities

Microsoft is accelerating the race for AI-driven security tools with the introduction of MDASH, a new platform leveraging over 100 agents to identify vulnerabilities. Cyber...

israel

May 18, 2026 08:46 /SCW Threat Desk /MEDIUM

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

Opexus: Fired Employees Delete Government Databases Via Microsoft Teams

LΣҒΔ𝕽ΩLL 🇮🇱 reports on a glaring operational security failure involving Muneeb and Sohaib Akhter, two brothers formerly employed by Opexus, a U.S. federal contractor. The...

microsoft

May 18, 2026 07:30 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Former CISA Nominee Sean Plankey Joins Defense Startup UFORCE as US CEO

Sean Plankey, who recently withdrew his nomination for CISA Director, has been appointed U.S. CEO of UFORCE, a London-based defense technology company formed from nine...

threat-intelpolicygovernmentmicrosoft

May 18, 2026 07:00 /SCW Research /HIGH

Featured

Daily Security Digest — 2026-05-17

23 vulnerability disclosures (3 Critical, 20 High) and 7 curated intelligence stories from 3 sources.

daily-digestvulnerabilityCVEhigh-severitycwe-346server-side-request-forgerycwe-918privilege-escalationcwe-269sql-injection

May 17, 2026 23:00 /SCW Daily Digest /CRITICAL

Deepfake Phishing Campaign Targets Israeli Public with Fake Endorsements

A new deepfake phishing campaign is actively targeting the Israeli public, leveraging sophisticated AI-generated videos. Cyber News - Erez Dasa reports that these videos falsely...

israel

May 17, 2026 14:56 /SCW Threat Desk /MEDIUM

Enable GuardDuty

Think about the last time you saw a breach notification. How many of those could have been caught earlier, or prevented entirely, if someone was...

lockdown-labhardeningawslogging

May 17, 2026 12:09 /Shimi Cohen

THORChain Suffers $10 Million Crypto Theft

The THORChain decentralized finance (DeFi) protocol recently sustained a significant theft, with attackers siphoning off approximately $10 million in digital assets. This incident highlights the...

israel

May 17, 2026 09:44 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

Grafana Labs Hit by Ransomware, Source Code Repositories Exfiltrated

Grafana Labs has confirmed a ransomware attack, with the Coinbase Cartel group claiming responsibility on their leak site. This incident highlights the persistent threat ransomware...

israel

May 17, 2026 08:48 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

node-ipc Supply Chain Attack: Malicious Code Steals Passwords

The open-source library `node-ipc` has again been compromised, with malicious code discovered that is designed to steal passwords. Cyber News - Erez Dasa reports that...

israel

May 16, 2026 23:19 /SCW Threat Desk /MEDIUM

Featured

Daily Security Digest — 2026-05-16

15 vulnerability disclosures (3 Critical, 12 High) and 1 curated intelligence stories from 1 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycwe-307code-executioncwe-415remote-code-executioncwe-94

May 16, 2026 23:00 /SCW Daily Digest /CRITICAL

Foxconn North America Confirms Cyberattack by Nitrogen Ransomware

Foxconn, a critical electronics manufacturer for tech giants like Apple, Google, Nvidia, Sony, Dell, and Intel, has confirmed a cyberattack impacting its North American facilities....

May 16, 2026 15:04 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Configure Windows Event Forwarding (WEF)

If an attacker is moving laterally through your Windows network right now, and you can't see their steps, you've already lost. Most organizations are blind...

lockdown-labhardeningwindowslogging

May 16, 2026 11:50 /Shimi Cohen

Featured

Daily Security Digest — 2026-05-15

31 vulnerability disclosures (7 Critical, 24 High) and 16 curated intelligence stories from 8 sources.

daily-digestvulnerabilityCVEhigh-severityauthentication-bypasscwe-305information-disclosurecwe-352cwe-862cwe-367

May 15, 2026 23:00 /SCW Daily Digest /CRITICAL

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

THORChain Suffers $10.7M Crypto Heist from Vault Compromise

The cryptocurrency platform THORChain recently sustained a significant security incident, resulting in a loss of approximately $10.7 million. According to The Record by Recorded Future,...

threat-inteldata-breachgovernment

May 15, 2026 22:31 /SCW Research /MEDIUM /⚙ 3 Sigma

node-ipc npm Package Compromised to Steal Credentials

BleepingComputer reports a critical supply chain attack targeting the popular `node-ipc` npm package. Attackers injected credential-stealing malware into newly published versions, specifically targeting developers who...

threat-inteldata-breachmalwareidentity

May 15, 2026 20:10 /SCW Research /HIGH /⚙ 3 Sigma

Robotic Lawn Mower Vulnerability: Remote Control Exposes Physical Risk

Cyber News - Erez Dasa reports on a critical vulnerability found in a robotic lawn mower, specifically a model weighing 100 kg and equipped with...

israel

May 15, 2026 15:03 /SCW Threat Desk /MEDIUM

Gremlin Stealer Evolves with Advanced Obfuscation, Crypto Clipping

Palo Alto Unit 42 reports a significant evolution in the Gremlin stealer, now employing advanced obfuscation tactics to evade detection. This variant is designed to...

threat-intelAPTmalwareresearchunit-42

May 15, 2026 13:00 /SCW Research /MEDIUM

Disable IP forwarding

Lateral movement. That's the nightmare scenario this simple hardening tip helps prevent. A compromised server shouldn't automatically become a pivot point to your entire network....

lockdown-labhardeninglinuxnetwork

May 15, 2026 12:50 /Shimi Cohen

Google Pixel Contextual Suggestions Raise Privacy Concerns

Google is rolling out a new feature, "Contextual Suggestions," which aims to anticipate user actions based on learned habits and location. As reported by LΣҒΔ𝕽ΩLL...

May 15, 2026 12:05 /SCW Threat Desk /MEDIUM

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

Mistral AI Source Code Advertised for Sale by TeamPCP

The TeamPCP hacker group is actively advertising the sale of nearly 450 repositories containing source code from Mistral AI, a prominent French AI firm. BleepingComputer...

threat-inteldata-breachmalware

May 15, 2026 01:50 /SCW Research /MEDIUM /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-05-14

89 vulnerability disclosures (23 Critical, 66 High) and 19 curated intelligence stories from 8 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycwe-287cwe-326cwe-1391cwe-89cwe-436

May 14, 2026 23:00 /SCW Daily Digest /CRITICAL

OpenAI Confirms Breach in TanStack Supply Chain Attack

OpenAI has confirmed a security breach impacting two employee devices as a result of the recent TanStack supply chain attack. BleepingComputer reports that this incident,...

threat-inteldata-breachmalware

May 14, 2026 22:07 /SCW Research /HIGH /⚙ 3 Sigma

ODNI Appoints Officials to Counter Foreign Election Threats for 2026

The Director of National Intelligence (ODNI), Tulsi Gabbard, has appointed two key officials to lead the coordination of U.S. intelligence agencies against foreign election interference....

threat-inteldata-breachgovernment

May 14, 2026 21:21 /SCW Research /MEDIUM /⚙ 3 Sigma

Enable diagnostic logging for key resources

Think about the last time you had an incident. If you couldn't tell who did what, when, or how, your response was already crippled. That's...

lockdown-labhardeningazurelogging

May 14, 2026 12:36 /Shimi Cohen

File Converter Sites: A Growing Vector for Data Theft and Malware

Cyber News - Erez Dasa warns that seemingly innocuous online file converter websites are increasingly becoming a target for data theft, surveillance, and malware distribution....

israel

May 14, 2026 09:01 /SCW Threat Desk /MEDIUM

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

Dream Market Admin 'Speedstepper' Arrested for Crypto and Gold Laundering

The administrator of the defunct darknet marketplace, Dream Market, known as 'Speedstepper,' has been apprehended in Germany for laundering millions of dollars via cryptocurrency and...

israel

May 14, 2026 07:47 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Debian Bolsters Supply Chain Security with Reproducible Builds Mandate

Debian is taking a significant step in supply chain security, mandating that new packages failing reproducible build verification will not be allowed into the 'testing'...

tools

May 14, 2026 07:04 /SCW Threat Desk /MEDIUM /⚙ 2 Sigma

Abrigo Data Breach: ShinyHunters Extortion Exposes 700K Contacts

In April 2026, the fintech software provider Abrigo was subjected to a "pay or leak" extortion attempt by the notorious ShinyHunters group. This incident, as...

data-breach

May 14, 2026 06:37 /SCW Research /HIGH /⚙ 3 Sigma

MuddyWater Targets South Korean Electronics Giant in Espionage Campaign

The Iran-linked advanced persistent threat (APT) group MuddyWater, also known as Seedworm or Static Kitten, has launched a wide-ranging cyber-espionage campaign. BleepingComputer reports that this...

threat-inteldata-breachmalware

May 14, 2026 00:59 /SCW Research /MEDIUM /⚙ 4 Sigma

Featured

Daily Security Digest — 2026-05-13

41 vulnerability disclosures (10 Critical, 31 High) and 10 curated intelligence stories from 6 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycwe-328cwe-648remote-code-executioncwe-502cwe-88

May 13, 2026 23:00 /SCW Daily Digest /CRITICAL

Dream Market Admin Arrested in Germany After US Indictment

A key administrator of the notorious dark web marketplace, Dream Market, has been apprehended in Germany following a U.S. indictment. The Record by Recorded Future...

threat-inteldata-breachgovernment

May 13, 2026 22:54 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

European Commission Pushes New Law to Delay Teen Social Media Access

The European Commission is advocating for new legislation aimed at delaying teenagers' access to social media platforms. This push comes amidst growing concerns over the...

threat-inteldata-breachgovernment

May 13, 2026 20:38 /SCW Research /MEDIUM

The Gentleman Leads Ransomware Surge: 46 Attacks in 24 Hours

Ransomware activity remains exceptionally high, with DARKFEED reporting 46 distinct attacks globally in the last 24 hours. The threat actor known as 'The Gentleman' is...

darkwebthreat-intelransomwaremalwaredata-breachdarkfeed

May 13, 2026 18:15 /SCW Threat Desk /MEDIUM

Israeli Cybersecurity Startups Dominate Global 'Rising In Cyber 2026' List

Cyber News - Erez Dasa reports that an impressive 15 out of the 30 companies selected for the prestigious 'Rising In Cyber 2026' project are...

israel

May 13, 2026 16:47 /SCW Threat Desk /MEDIUM

UK Reforms Cybercrime Law, Shields Security Researchers

The UK government is moving to overhaul its Computer Misuse Act 1990, a critical piece of legislation that has long drawn criticism for potentially criminalizing...

threat-inteldata-breachgovernment

May 13, 2026 15:58 /SCW Research /MEDIUM

AI Code Analysis Tools: Reality Check on Mythos vs. Curl

The AI code analysis tool Mythos was recently put to the test against the curl project, a highly scrutinized codebase. Daniel Stenberg, the lead developer...

May 13, 2026 15:00 /SCW Threat Desk /MEDIUM

West Pharmaceutical Services Hit by Ransomware, Data Stolen

West Pharmaceutical Services, a major global supplier of injectable solutions, has reported a ransomware attack to the U.S. stock exchange. According to Cyber News -...

israel

May 13, 2026 14:54 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

SCW Elite

Want early alerts?

Get exclusive analysis, detection rules, and IOC feeds

Get Protected →

Password Insecurity: Israelis Mirror Global Trends, Neglecting Basic Hygiene

A recent survey highlighted by Cyber News - Erez Dasa reveals a stark reality: Israeli users, much like their global counterparts, consistently opt for easily...

israel

May 13, 2026 13:04 /SCW Threat Desk /MEDIUM

Enable CloudTrail in all regions

Let's talk about the first thing sophisticated attackers go after: your audit trail. If they can blind you, they own you. CloudTrail is that trail...

lockdown-labhardeningawslogging

May 13, 2026 12:48 /Shimi Cohen

Pro-Iranian Group Claims eBay, Spotify Attacks, Citing Major Disruptions

A pro-Iranian hacking group, "The Islamic Resistance in Iraq," has claimed responsibility for a widespread cyberattack against eBay, asserting it caused severe two-day disruptions and...

israel

May 13, 2026 12:05 /SCW Threat Desk /MEDIUM

Unusual Admin Logins, Data Exfiltration: The 2 AM SOC Gap

Cyber News - Erez Dasa highlights a critical gap in organizational security: the lack of real-time monitoring and response during off-hours. Dasa poses scenarios where...

israelcybersafe

May 13, 2026 10:02 /SCW Threat Desk /MEDIUM

Canada Life Hit by ShinyHunters 'Pay or Leak' Extortion

Canada Life fell victim to a "pay or leak" extortion campaign by the ShinyHunters group in April 2026. Have I Been Pwned reports the group...

data-breachphishingthreat-inteltools

May 13, 2026 09:51 /SCW Research /MEDIUM /⚙ 3 Sigma

Akamai Reportedly in Advanced Talks to Acquire Israeli Startup LayerX

Cyber News - Erez Dasa reports that Israeli startup LayerX is in advanced negotiations to be acquired by Akamai. LayerX, which develops a browser security...

israel

May 13, 2026 08:10 /SCW Threat Desk /MEDIUM

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

Microsoft Warns of Russian Wiper Malware Targeting Israel, Iran

Microsoft's Threat Intelligence division has identified a Russian-attributed wiper malware designed to erase data on infected Linux systems. According to Cyber News - Erez Dasa,...

israeldata-breachidentitythreat-intel

May 13, 2026 07:47 /SCW Threat Desk /MEDIUM

Israel National Cyber Directorate Warns of Coordinated Psychological Operations

The Israel National Cyber Directorate (INCD) has identified a recent surge in fear-mongering messages targeting citizens, according to Cyber News - Erez Dasa. These messages...

israel

May 13, 2026 07:43 /SCW Threat Desk /MEDIUM

Featured

Daily Security Digest — 2026-05-12

99 vulnerability disclosures (33 Critical, 66 High) and 31 curated intelligence stories from 8 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycwe-287cwe-522cwe-798path-traversalcwe-22

May 12, 2026 23:00 /SCW Daily Digest /CRITICAL

Foxconn Confirms Cyberattack on North American Factories

Foxconn, a critical player in the global technology supply chain, has confirmed a cyberattack impacting its North American manufacturing operations. While a spokesperson for the...

threat-inteldata-breachgovernment

May 12, 2026 22:57 /SCW Research /MEDIUM /⚙ 2 Sigma

Congress Probes Food Retailers Over Surveillance Pricing Practices

A U.S. Congressman has initiated an inquiry into how food retailers are leveraging consumer data for "surveillance pricing," a practice where prices are dynamically adjusted...

threat-inteldata-breachgovernment

May 12, 2026 22:47 /SCW Research /MEDIUM

West Pharmaceutical Hit by Ransomware, Data Stolen

West Pharmaceutical Services has confirmed a ransomware attack that led to data theft and system encryption. The incident, which occurred on May 4, prompted the...

threat-inteldata-breachgovernmentmalwareransomwaremicrosoft

May 12, 2026 22:00 /SCW Research /HIGH /⚙ 3 Sigma

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

Free Online File Converters: A Malware and Data Theft Vector

LΣҒΔ𝕽ΩLL 🇮🇱 recently highlighted the risks associated with free online file conversion services, drawing a direct line to a 2025 FBI warning about these platforms....

malwareransomwaretools

May 12, 2026 21:45 /SCW Threat Desk /MEDIUM

Microsoft Ships Windows 11 Cumulative Updates KB5089549 & KB5087420

Microsoft has rolled out cumulative updates KB5089549 and KB5087420 for Windows 11 versions 25H2/24H2 and 23H2, respectively. BleepingComputer reports that these updates address critical security...

threat-inteldata-breachmalwaremicrosofttools

May 12, 2026 21:09 /SCW Research /MEDIUM

EU Surveillance Tech Exports Undermine Human Rights, Report Finds

The European Commission is failing to enforce its own 2021 export rules, allowing member states to continue selling surveillance technology to countries with poor human...

threat-inteldata-breachgovernmenttools

May 12, 2026 19:49 /SCW Research /MEDIUM

Mini Shai-Hulud Campaign Hits TanStack, UiPath, Mistral AI via npm/PyPI

The Mini Shai-Hulud campaign continues its supply chain assault, compromising popular packages on npm and PyPI. LΣҒΔ𝕽ΩLL 🇮🇱 reports that high-impact libraries like TanStack (used...

tools

May 12, 2026 17:15 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Instructure Pays Ransom After Canvas Breach; Congress Investigates

Instructure, the company behind the widely used Canvas learning management system, reportedly paid a ransom following a cybersecurity incident. The Record by Recorded Future indicated...

threat-inteldata-breachgovernmentransomware

May 12, 2026 16:01 /SCW Research /MEDIUM /⚙ 3 Sigma

Shai Hulud Malware Compromises TanStack, Mistral npm Packages in Supply Chain Attack

A significant software supply-chain attack, leveraging the "Shai-Hulud" malware, has compromised hundreds of open-source packages. BleepingComputer reports that this attack specifically targeted and signed malicious...

threat-inteldata-breachmalware

May 12, 2026 14:29 /SCW Research /HIGH /⚙ 2 Sigma

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

SAP Patches Critical Flaws in Commerce Cloud and S/4HANA

SAP has pushed out its May 2026 security updates, addressing 15 vulnerabilities across its product line. Among these, two critical flaws stand out, impacting the...

threat-inteldata-breachmalwarecloudtools

May 12, 2026 14:04 /SCW Research /HIGH /⚙ 3 Sigma

Enable PowerShell script block logging

Attackers live in PowerShell. Your incident response team will be blind without proper logging. This is how you catch them before they pivot from initial...

lockdown-labhardeningwindowslogging

May 12, 2026 12:44 /Shimi Cohen

Cushman & Wakefield Suffers ShinyHunters Data Extortion, 310K Accounts Breached

In May 2026, the real estate services firm Cushman & Wakefield was targeted by the ShinyHunters group in a "pay or leak" extortion campaign. Following...

data-breachthreat-intel

May 12, 2026 09:58 /SCW Research /MEDIUM /⚙ 3 Sigma

SMS-Based Disinformation Campaign Targets Mobile Users

Cyber Updates - Asher Tamam reports a recent SMS-based disinformation campaign targeting mobile users across various Israeli telecommunication providers, including Pelephone, Partner, and Cellcom. During...

israel

May 12, 2026 08:03 /SCW Threat Desk /MEDIUM /⚙ 2 Sigma

Checkmarx Jenkins Plugin Compromised with Infostealer

Checkmarx has confirmed that a malicious version of its Jenkins Application Security Testing (AST) plugin was briefly distributed on the Jenkins Marketplace. BleepingComputer reports that...

threat-inteldata-breachmalware

May 12, 2026 01:03 /SCW Research /MEDIUM /⚙ 3 Sigma

GhostLock Tool Abuses Windows API to Block File Access

A new proof-of-concept tool, GhostLock, demonstrates a critical abuse case for legitimate Windows file APIs. BleepingComputer reports that GhostLock can effectively block access to files,...

threat-inteldata-breachmalwaremicrosofttools

May 12, 2026 01:02 /SCW Research /MEDIUM

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

Featured

Daily Security Digest — 2026-05-11

17 vulnerability disclosures (1 Critical, 16 High) and 2 curated intelligence stories from 2 sources.

daily-digestvulnerabilityCVEhigh-severityimproper-access-controlcwe-184cwe-918cwe-441cwe-863cwe-306

May 11, 2026 23:00 /SCW Daily Digest /CRITICAL

Texas Sues Netflix for Alleged Data 'Surveillance Machinery'

Texas is suing Netflix, alleging the streaming giant operates a 'surveillance machinery' by collecting and sharing user data without explicit consent. The lawsuit, filed by...

threat-inteldata-breachgovernment

May 11, 2026 22:56 /SCW Research /MEDIUM

Trump Mobile T1 and $TRUMP Memecoin: A Brand Power Illusion

LΣҒΔ𝕽ΩLL 🇮🇱 highlights a concerning trend where brand power is leveraged to sell products and concepts that fail to materialize. This is exemplified by the...

May 11, 2026 22:11 /SCW Threat Desk /MEDIUM

FCC Delays Security Update Ban for Foreign Routers and Drones to 2029

The Federal Communications Commission (FCC) has pushed back the deadline for banning security updates on certain foreign-made routers and drones. Originally set for March 1,...

threat-inteldata-breachgovernmentmicrosoft

May 11, 2026 19:50 /SCW Research /MEDIUM

Cl0p Ransomware: UK Water Company Fined for Two-Year Undetected Breach

The UK's Information Commissioner's Office (ICO) has levied a significant fine against South Staffordshire Water following a protracted breach by the Cl0p ransomware group. The...

threat-inteldata-breachgovernmentmalwareransomwaremicrosoft

May 11, 2026 15:51 /SCW Research /MEDIUM /⚙ 3 Sigma

Dirty Frag: Linux Kernel Hit by Second Major Flaw in Weeks

The Linux kernel is facing a critical new vulnerability, dubbed 'Dirty Frag,' allowing local privilege escalation. This is the second major flaw in the kernel's...

threat-inteldata-breachgovernment

May 11, 2026 15:26 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

Nitrogen Group Claims Major Foxconn Data Breach, Affecting Apple, Google, Nvidia Supply Chains

The notorious attack group Nitrogen has claimed responsibility for a significant data breach at Foxconn, the world's largest electronics manufacturer. Cyber News - Erez Dasa...

israel

May 11, 2026 15:09 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Configure firewall (iptables/nftables)

You wouldn't leave your front door wide open when you leave the house, so why are you doing it with your Linux servers? An open...

lockdown-labhardeninglinuxnetwork

May 11, 2026 13:40 /Shimi Cohen

TrustedVolumes Crypto Project Suffers $6.7M Theft

The crypto project TrustedVolumes has reportedly suffered a significant digital asset theft, with an attacker making off with approximately $6.7 million in cryptocurrencies. This incident,...

israel

May 11, 2026 08:51 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

US Nationals Jailed for Aiding North Korean IT Worker Fraud Scheme

Two U.S. citizens have been sentenced to 18 months in prison for operating a laptop farm that facilitated a sophisticated North Korean IT worker fraud...

israel

May 11, 2026 08:20 /SCW Threat Desk /MEDIUM

Apple AirPods Cameras: Privacy Nightmare Beyond User Choice

Apple is reportedly developing AirPods equipped with cameras, designed to feed visual data to Siri for 'Visual Intelligence' features. This initiative aims to enhance navigation,...

May 11, 2026 07:45 /SCW Threat Desk /MEDIUM

ClaudeBleed: Critical Flaw Hijacks Claude's Browser Extension

Cyber Updates - Asher Tamam reports on a critical vulnerability, dubbed 'ClaudeBleed' by LayerX researchers, affecting the Claude AI browser extension. This flaw allows any...

israeltools

May 11, 2026 07:12 /SCW Threat Desk /MEDIUM /⚙ 2 Sigma

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

Featured

Daily Security Digest — 2026-05-10

15 vulnerability disclosures (5 Critical, 10 High) and 2 curated intelligence stories from 1 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycwe-290privilege-escalationcwe-862remote-code-executioncwe-306

May 10, 2026 23:00 /SCW Daily Digest /CRITICAL

ShinyHunters Ransomware Disrupts Instructure Canvas, Forces Payout

The ShinyHunters ransomware group targeted Instructure, the provider behind the widely used Canvas learning management system. This attack impacted thousands of educational institutions globally, including...

israel

May 10, 2026 19:01 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

IDF Certificate Generator Exposes Rank and Unit Creation

Cyber News - Erez Dasa reports that the Israel Defense Forces (IDF) recently distributed a link for an appreciation certificate related to "Operation Roaring Lion."...

israel

May 10, 2026 15:39 /SCW Threat Desk /MEDIUM

Enable Microsoft Defender for Cloud

I've seen environments fall apart because basic monitoring wasn't in place. Attackers love flying under the radar. If you're running Azure without Defender for Cloud,...

lockdown-labhardeningazurelogging

May 10, 2026 11:58 /Shimi Cohen

Europol Under Fire for Shadow IT System Exposing Sensitive Data

LΣҒΔ𝕽ΩLL 🇮🇱 reports that Europol, the EU's law enforcement agency, developed a problematic 'Shadow IT' environment, accumulating vast amounts of sensitive data without adequate controls....

May 10, 2026 08:30 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-05-09

23 vulnerability disclosures (7 Critical, 16 High) and 2 curated intelligence stories from 2 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycwe-347privilege-escalationcwe-284cwe-639cwe-94

May 09, 2026 23:00 /SCW Daily Digest /CRITICAL

🛡️

SCW Elite

Want early alerts?

Get exclusive analysis, detection rules, and IOC feeds

Get Protected →

JDownloader Site Compromised, Distributes Python RAT Malware

The official website for JDownloader, a widely used download manager, was compromised to distribute malicious installers for both Windows and Linux, according to BleepingComputer. The...

threat-inteldata-breachmalwaremicrosoft

May 09, 2026 22:27 /SCW Research /MEDIUM /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-05-08

65 vulnerability disclosures (16 Critical, 49 High) and 22 curated intelligence stories from 7 sources.

daily-digestvulnerabilityCVEhigh-severitycross-site-scripting-xsscwe-1004cwe-266cwe-200cwe-497server-side-request-forgery

May 08, 2026 23:00 /SCW Daily Digest /CRITICAL

GM Fined $12 Million in California Privacy Settlement Over Driver Data

GM has agreed to pay over $12 million in a privacy settlement with California officials, marking the largest fine issued under the California Consumer Privacy...

threat-inteldata-breachgovernment

May 08, 2026 22:35 /SCW Research /MEDIUM /⚙ 2 Sigma

Kingdom Market Administrator Sentenced to 16 Years

Slovakian national Alan Bill, 33, has been sentenced to 16 years in prison after pleading guilty to conspiracy to distribute controlled substances. The Record by...

threat-inteldata-breachgovernment

May 08, 2026 22:16 /SCW Research /MEDIUM /⚙ 3 Sigma

Virginia Man Convicted for Deleting 96 Government Databases

A Virginia man has been convicted on federal charges for deleting 96 government databases and illicitly accessing an individual’s email account through password theft. This...

threat-inteldata-breachgovernment

May 08, 2026 21:14 /SCW Research /MEDIUM

NVIDIA GeForce NOW Data Breach Impacts Armenian Users

NVIDIA has confirmed a data breach affecting its GeForce NOW cloud gaming service. BleepingComputer reports that NVIDIA clarified the incident is limited to users in...

threat-inteldata-breachmalware

May 08, 2026 19:18 /SCW Research /HIGH /⚙ 3 Sigma

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

Canvas Cyber Incident Forces Universities to Reschedule Exams

Multiple universities were forced to reschedule final exams following a cyber incident affecting the Canvas educational platform. The Record by Recorded Future reports that students...

threat-inteldata-breachgovernment

May 08, 2026 18:48 /SCW Research /MEDIUM /⚙ 3 Sigma

ShinyHunters Claims Canvas Breach Affects 9,000 Schools, Demands Payment

ShinyHunters, a prolific criminal hacker and extortion group, claims to have breached Instructure's Canvas learning management system, affecting nearly 9,000 educational institutions. CyberScoop reports the...

threat-intelpolicygovernmentdata-breach

May 08, 2026 16:29 /SCW Research /MEDIUM /⚙ 3 Sigma

Pro-Ukraine Hacktivists BO Team and Head Mare Coordinate Attacks Against Russia

Pro-Ukraine hacktivist groups BO Team and Head Mare appear to be coordinating their cyberattacks against Russian targets. The Record by Recorded Future reports that Kaspersky...

threat-inteldata-breachgovernmenttools

May 08, 2026 16:09 /SCW Research /HIGH /⚙ 3 Sigma

Cloudflare, Arctic Wolf, CrowdStrike Layoffs Signal AI's Impact on Cybersecurity Workforce

Cloudflare is reportedly laying off approximately 1,200 employees, representing 20% of its workforce, a move attributed to the transformative impact of AI. This follows similar...

israel

May 08, 2026 13:48 /SCW Threat Desk /MEDIUM

Clickfix Campaign: Social Engineering Leads to Account Lockouts

Cyber News - Erez Dasa is once again alerting the community to the ongoing Clickfix social engineering campaign. This phishing attack, which primarily targets individuals,...

israel

May 08, 2026 13:33 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

AI Supply Chain Under Attack: Malicious Models on Hugging Face, ClawHub

A recent analysis by Cyber News - Erez Dasa highlights a critical vulnerability in the AI supply chain, specifically targeting platforms like Hugging Face and...

israel

May 08, 2026 13:24 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

Remove 0.0.0.0/0 from security groups

The Capital One breach in 2019? A misconfigured security group allowing SSRF to the metadata service. This isn't theoretical; unrestricted inbound access is a primary...

lockdown-labhardeningawsnetwork

May 08, 2026 11:23 /Shimi Cohen

Zara Breach: ShinyHunters Leveraged Anodot Compromise for Extortion

In April 2026, the fashion giant Zara was targeted by the ShinyHunters extortion group, part of a broader "pay or leak" campaign. Have I Been...

data-breachthreat-intel

May 08, 2026 10:14 /SCW Research /MEDIUM /⚙ 3 Sigma

MuddyWater Uses Chaos Ransomware as Cover for Espionage

Iranian government-backed hackers, specifically the MuddyWater APT group, are using Chaos ransomware as a smokescreen for their espionage operations. The Record by Recorded Future reports...

threat-inteldata-breachgovernmentmalwareransomware

May 08, 2026 00:30 /SCW Research /HIGH /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-05-07

32 vulnerability disclosures (8 Critical, 24 High) and 16 curated intelligence stories from 8 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycwe-346cross-site-scripting-xsscwe-79denial-of-servicecwe-476

May 07, 2026 23:00 /SCW Daily Digest /CRITICAL

Anonymous Claims Control Over Three Chinese Satellites

Anonymous has claimed to have breached and taken control of three Chinese satellites: Xinghuo 01, Shiyan 1, and Xiamen Tech No.1. This operation is presented...

May 07, 2026 21:03 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Tom Parker Tipped for CISA Leadership Role

Rumors are circulating that Tom Parker, a seasoned operator and executive in the cybersecurity space, may be appointed as the next leader for the Cybersecurity...

threat-inteltools

May 07, 2026 19:55 /SCW Research /MEDIUM

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

North Carolina Man Pleads Guilty to Doxxing Supreme Court Justices

A North Carolina man has pleaded guilty to doxxing U.S. Supreme Court justices, as reported by The Record by Recorded Future. This incident highlights the...

threat-inteldata-breachgovernment

May 07, 2026 18:00 /SCW Research /MEDIUM

Ransomware Groups Aggressively Target Healthcare Sector Globally

DARKFEED reports indicate a significant surge in ransomware and cyber extortion attacks against the healthcare sector over the past week, with 23 incidents tracked. The...

darkwebthreat-intelransomwaremalwaredarkfeed

May 07, 2026 17:37 /SCW Threat Desk /MEDIUM

Polish Intelligence Warns of Attacks on Water Treatment Systems

Polish intelligence has issued a stark warning regarding cyberattacks targeting critical water treatment control systems. The Record by Recorded Future reports that while no specific...

threat-inteldata-breachgovernment

May 07, 2026 15:38 /SCW Research /MEDIUM

MedusaLocker Ransomware Group Details Financial Motivation, Operational Shifts

Cyber News - Erez Dasa has published an exclusive interview with the MedusaLocker ransomware group, shedding light on their operations and motivations. The group clarified...

israel

May 07, 2026 14:09 /SCW Threat Desk /MEDIUM

Disable SMBv1

WannaCry, NotPetya, EternalBlue. These aren't ancient history; they're a stark reminder of what happens when you leave an ancient, vulnerable protocol like SMBv1 enabled. It's...

lockdown-labhardeningwindowsnetwork

May 07, 2026 12:38 /Shimi Cohen

Woflow Data Breach: ShinyHunters Exposes 447K Accounts

In March 2026, the AI-driven merchant data platform Woflow was publicly named as a victim by the notorious ShinyHunters data extortion group. This isn't just...

data-breach

May 07, 2026 09:48 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

North Korean APT37 Targets Ethnic Koreans in China with BirdCall Malware

North Korean state-sponsored threat group APT37 (aka ScarCruft or Reaper) is actively targeting ethnic Koreans residing in China. The campaign leverages Android malware dubbed ‘BirdCall’,...

threat-inteldata-breachgovernmentmalware

May 07, 2026 03:12 /SCW Research /MEDIUM /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-05-06

25 vulnerability disclosures (1 Critical, 24 High) and 16 curated intelligence stories from 7 sources.

daily-digestvulnerabilityCVEhigh-severitydenial-of-serviceremote-code-executioncwe-94cross-site-scripting-xsscwe-79sql-injection

May 06, 2026 23:00 /SCW Daily Digest /CRITICAL

DAEMON Tools Supply Chain Attack Confirmed, Malware-Free Version Released

Disc Soft Limited, the developer behind DAEMON Tools Lite, has confirmed that its software was compromised in a supply chain attack. BleepingComputer reports that the...

threat-inteldata-breachmalwaretools

May 06, 2026 19:43 /SCW Research /HIGH /⚙ 3 Sigma

Ransomware Attacks Succeed by Destroying Backups First, Not Just Encrypting

Ransomware operations are evolving beyond simple data encryption. BleepingComputer reports that attackers now systematically target and destroy backup systems *before* deploying their ransomware payloads. This...

threat-inteldata-breachmalwareransomwarebleepingcomputer

May 06, 2026 17:04 /SCW Research /MEDIUM

MuddyWater Uses Chaos Ransomware as Decoy for Microsoft Teams Attacks

Iranian threat group MuddyWater is employing Chaos ransomware as a deceptive tactic in their latest campaigns, according to BleepingComputer. The group leverages social engineering via...

threat-inteldata-breachmalwareransomwaremicrosoftphishing

May 06, 2026 16:02 /SCW Research /MEDIUM /⚙ 3 Sigma

LegionProxy Breach Exposes 10,000 Accounts

The commercial proxy network LegionProxy has disclosed a data breach impacting approximately 10,144 accounts. The incident, which occurred in April 2026, resulted in the exposure...

data-breach

May 06, 2026 13:11 /SCW Research /HIGH /⚙ 3 Sigma

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

Disable SMBv1

WannaCry, NotPetya, EternalBlue. If those names don't send a shiver down your spine, you've been lucky. The common thread? SMBv1. This isn't ancient history; it's...

lockdown-labhardeningwindowsnetwork

May 06, 2026 12:28 /Shimi Cohen

Cyber News: Basic Security Hygiene Gaps Plague Most Organizations

Cyber News - Erez Dasa highlights common, yet critical, security oversights found across many organizations. Their analysis points to three fundamental questions every security team...

israelcybersafe

May 06, 2026 10:02 /SCW Threat Desk /MEDIUM

UK Age Verification Flaws Exploit Social Engineering, Parental Aid

New research highlighted by LΣҒΔ𝕽ΩLL 🇮🇱 reveals significant flaws in online age verification systems in the UK. Approximately one-third of British children have successfully bypassed...

phishingthe-independent

May 06, 2026 08:03 /SCW Threat Desk /MEDIUM

Trellix Source Code Breach Exposes Supply Chain Risks

A recent breach of Trellix's source code, reported by Dark Reading, underscores the escalating threat to software supply chains. While details remain scarce, the compromise...

threat-inteltoolsdata-breach

May 05, 2026 23:40 /SCW Research /MEDIUM /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-05-05

52 vulnerability disclosures (14 Critical, 38 High) and 26 curated intelligence stories from 8 sources.

daily-digestvulnerabilityCVEhigh-severitycwe-22cwe-770cwe-306cwe-284privilege-escalationcwe-367

May 05, 2026 23:00 /SCW Daily Digest /CRITICAL

MedusaLocker Leaks Magnolia Data After Ransom Refusal

The MedusaLocker ransomware group has publicly listed the Israeli company Magnolia as a victim. According to Cyber News - Erez Dasa, the group claims Magnolia...

israel

May 05, 2026 22:45 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

FTC Bans Kochava from Selling Sensitive Location Data

The Federal Trade Commission (FTC) has banned data broker Kochava from selling granular geolocation data, citing the company's alleged practice of collecting and monetizing sensitive...

threat-inteldata-breachgovernment

May 05, 2026 21:02 /SCW Research /MEDIUM

Grok Bypassed for $200k Crypto Theft via Morse Code in Username

An audacious crypto heist saw a user reportedly trick the AI chatbot Grok into transferring approximately $200,000 in cryptocurrency. The attacker embedded a command in...

May 05, 2026 21:01 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Conti, Akira Ransomware Affiliate Sentenced to 8 Years

A Latvian national, Deniss Zolotarjovs, received an 8-year prison sentence for his involvement as a ransomware affiliate. Zolotarjovs pleaded guilty to money laundering and wire...

threat-inteldata-breachgovernmentmalwareransomware

May 05, 2026 20:33 /SCW Research /MEDIUM /⚙ 2 Sigma

Icarus: New Threat Actor Emerges

DARKFEED has identified a new threat actor, dubbed 'Icarus', now active in the cyber landscape. Details regarding their preferred attack vectors, targeting methodologies, and specific...

darkwebthreat-intelransomware

May 05, 2026 18:36 /SCW Threat Desk /MEDIUM

Google Chrome Bugs Found by AI Earn $57,000 Bug Bounty

Cyber News - Erez Dasa reports that researchers leveraging a modest $20/month AI subscription successfully identified two vulnerabilities in Google Chrome, netting them a $57,000...

israel

May 05, 2026 16:15 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Taiwan High Speed Rail Emergency Stop Caused by SDR Attack

A 23-year-old student in Taiwan caused a significant disruption to the Taiwan High Speed Rail Corp (THSRC) operations last month, leading to the emergency halt...

israel

May 05, 2026 16:08 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

SCW Elite

Want early alerts?

Get exclusive analysis, detection rules, and IOC feeds

Get Protected →

Vimeo Data Breach Exposes Personal Information of 119,000

The ShinyHunters extortion gang successfully breached Vimeo's online video platform in April, compromising the personal information of over 119,000 individuals. This incident, confirmed by data...

threat-inteldata-breachmalware

May 05, 2026 16:03 /SCW Research /MEDIUM /⚙ 3 Sigma

Australia Establishes Cyber Incident Review Board

Australia is establishing a Cyber Incident Review Board, mirroring a concept previously seen in the U.S. This board will conduct no-fault, post-incident reviews of significant...

threat-inteldata-breachgovernmentidentity

May 05, 2026 15:45 /SCW Research /MEDIUM

Lock inactive user accounts

That dormant account for a contractor who left six months ago? It's a gold mine for an attacker. I've seen too many breaches start with...

lockdown-labhardeninglinuxidentity

May 05, 2026 12:11 /Shimi Cohen

Oracle Lays Off 30,000 for AI Infrastructure Shift

Oracle has reportedly initiated a massive layoff of approximately 30,000 employees to reallocate resources towards building data centers and funding AI infrastructure. This strategic pivot...

cloud

May 05, 2026 07:30 /SCW Threat Desk /MEDIUM

Vimeo Breach: ShinyHunters Leaks User Data via Third-Party Vendor Anodot

Have I Been Pwned reports that Vimeo was listed on the ShinyHunters extortion portal in April 2026 as part of a "pay or leak" campaign....

data-breachidentitythreat-intel

May 05, 2026 05:08 /SCW Research /MEDIUM /⚙ 3 Sigma

Handala Group Claims Fujairah Port Cyberattack Amid Missile Strikes

The Handala group claims it launched a cyberattack against Fujairah Port in the United Arab Emirates, coinciding with recent missile strikes. Cyber News - Erez...

israel

May 04, 2026 23:43 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

Featured

Daily Security Digest — 2026-05-04

31 vulnerability disclosures (20 Critical, 11 High) and 12 curated intelligence stories from 6 sources.

daily-digestvulnerabilityCVEhigh-severitycommand-injectioncwe-94criticalout-of-bounds-1cwe-125privilege-escalation

May 04, 2026 23:00 /SCW Daily Digest /CRITICAL

Infrastructure Education Company Reports Cyber Incident, User Data Exposed

The Record by Recorded Future reports that Infrastructure, an educational technology company, confirmed a cyber incident. Steve Proud, Infrastructure’s CISO, stated that attackers accessed user...

threat-inteldata-breachgovernmentmicrosoft

May 04, 2026 20:19 /SCW Research /MEDIUM /⚙ 2 Sigma

Forbes Agrees to $10 Million Settlement in Wiretapping Lawsuit

Forbes has preliminarily agreed to a $10 million settlement in a California wiretapping lawsuit, as reported by The Record by Recorded Future. The class-action suit...

threat-inteldata-breachgovernmentcloudtools

May 04, 2026 19:49 /SCW Research /MEDIUM

Ransomware Group Claims Breach of Hungarian Media Firm Mediaworks

A ransomware group has claimed a breach against Mediaworks, a prominent pro-Orbán Hungarian media firm. The Record by Recorded Future reports that Mediaworks confirmed the...

threat-inteldata-breachgovernmentmalwareransomware

May 04, 2026 18:23 /SCW Research /MEDIUM /⚙ 2 Sigma

Cisco Acquires Israeli Startup Astrix for $400M to Combat Non-Human Identities

Cisco has announced its acquisition of Israeli cybersecurity firm Astrix for approximately $400 million. Astrix specializes in securing non-human identities, a critical and rapidly growing...

israel

May 04, 2026 18:18 /SCW Threat Desk /MEDIUM

Configure Network Security Groups (NSGs)

I've walked into far too many Azure environments where the perimeter is a sieve. The most common culprit? Missing or misconfigured Network Security Groups. This...

lockdown-labhardeningazurenetwork

May 04, 2026 12:25 /Shimi Cohen

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

cPanel Exploited: Over 40,000 Systems Compromised Globally

Cyber News - Erez Dasa reports that a critical vulnerability in cPanel is being widely exploited, with over 40,000 systems compromised worldwide. Attackers are leveraging...

israel

May 04, 2026 12:20 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Cyber News - Erez Dasa Debunks Stormous Claims and Crocs Israel Breach

Cyber News - Erez Dasa has clarified two recent cybersecurity incidents. The ransomware group Stormous incorrectly identified German company Or-technology as Israeli, causing unnecessary alarm....

israel

May 04, 2026 11:38 /SCW Threat Desk /MEDIUM

Barshai Company Email Compromise Spreads Malicious Emails

Cyber News - Erez Dasa reports an email compromise incident affecting Barshai Company, a firm specializing in advanced transportation systems and public transport. Malicious emails...

israel

May 04, 2026 11:33 /SCW Threat Desk /MEDIUM

Marcus & Millichap Breach: ShinyHunters Leaks 1.8M Records

Commercial real estate giant Marcus & Millichap was publicly named in April 2026 as an alleged victim of the ShinyHunters hacking and extortion group. Have...

data-breachtools

May 04, 2026 01:53 /SCW Research /MEDIUM /⚙ 3 Sigma

Instructure Confirms Data Breach as ShinyHunters Claims Attack

Instructure, a major educational technology provider, has confirmed a data breach following claims from the ShinyHunters extortion group. BleepingComputer reports that the attack led to...

threat-inteldata-breachmalware

May 04, 2026 01:16 /SCW Research /MEDIUM /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-05-03

4 vulnerability disclosures (4 High) and 2 curated intelligence stories from 2 sources.

daily-digestvulnerabilityCVEhigh-severitysql-injectioncwe-74cwe-89command-injectioncwe-77cwe-78

May 03, 2026 23:00 /SCW Daily Digest /HIGH

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

Microsoft Defender Flags DigiCert Certificates as Trojan

Microsoft Defender is currently flagging legitimate DigiCert root certificates as `Trojan:Win32/Cerdigent.A!dha`. BleepingComputer reports that this false positive is not only generating widespread alerts but, in...

threat-inteldata-breachmalwaremicrosoft

May 03, 2026 21:11 /SCW Research /MEDIUM

Enforce least privilege IAM policies

You know what gets me? Seeing environments where a single compromised credential can bring down a whole AWS account. Nine times out of ten, it’s...

lockdown-labhardeningawsidentity

May 03, 2026 11:50 /Shimi Cohen

Featured

Daily Security Digest — 2026-05-02

33 vulnerability disclosures (2 Critical, 31 High) and 5 curated intelligence stories from 5 sources.

daily-digestvulnerabilityCVEhigh-severitysql-injectioncwe-74cwe-89command-injectioncwe-77cwe-78

May 02, 2026 23:00 /SCW Daily Digest /CRITICAL

Enable Windows Firewall on all profiles

How many times have I seen "unauthorized access" turn out to be a lack of basic perimeter control? Far too many. If your Windows Servers...

lockdown-labhardeningwindowsnetwork

May 02, 2026 11:23 /Shimi Cohen

ZenBusiness Breach: ShinyHunters Exfiltrates 5M Records from Snowflake, Mixpanel, Salesforce

In March 2026, the hacker and extortion group ShinyHunters claimed a significant data exfiltration from ZenBusiness, a business formation and compliance platform. The group asserted...

data-breachransomwaretools

May 02, 2026 08:53 /SCW Research /HIGH /⚙ 3 Sigma

Anthropic Launches Claude Security: AI for AppSec Vulnerability Detection

Anthropic has launched Claude Security, a new tool aimed at enhancing Application Security (AppSec) by scanning code for vulnerabilities and suggesting fixes. LΣҒΔ𝕽ΩLL 🇮🇱 reports...

May 02, 2026 08:40 /SCW Threat Desk /MEDIUM

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

Palo Alto Unit 42: Beyond Endpoint Detection

Palo Alto Unit 42 underscores a critical gap in many security postures: an over-reliance on endpoint detection. Their recent analysis highlights that a truly comprehensive...

threat-intelAPTmalwareresearch

May 02, 2026 02:00 /SCW Research /MEDIUM

Featured

Daily Security Digest — 2026-05-01

2 vulnerability disclosures (2 High) and 1 curated intelligence stories from 1 sources.

daily-digestvulnerabilityCVEhigh-severitycwe-20cwe-269command-injectioncwe-77cwe-78phishing

May 01, 2026 23:00 /SCW Daily Digest /HIGH

France Titres Data Breach: 15-Year-Old Detained for Selling Stolen Data

BleepingComputer reports that French authorities have detained a 15-year-old individual suspected of selling data pilfered during a cyberattack against France Titres (ANTS). This agency is...

threat-inteldata-breachmalware

May 01, 2026 20:52 /SCW Research /MEDIUM /⚙ 3 Sigma

Senate Judiciary Advances Bill Barring Minors from AI Companions

The U.S. Senate Judiciary Committee has advanced the GUARD Act, a bill designed to regulate interactions between minors and AI companions. According to The Record...

threat-inteldata-breachgovernmentidentity

May 01, 2026 19:28 /SCW Research /MEDIUM

Instructure Canvas Breach: Social Engineering Exploits Salesforce Instance

Edtech provider Instructure, known for its Canvas learning management system, has confirmed a data breach stemming from a social engineering attack. The attackers successfully compromised...

threat-inteldata-breachmalwarephishing

May 01, 2026 19:26 /SCW Research /HIGH /⚙ 3 Sigma

Incident Responders Sentenced for Covert Ransomware Attacks

Two cybersecurity incident responders have been sentenced to four years in prison for exploiting their positions to execute covert ransomware attacks, according to The Record...

threat-inteldata-breachgovernmentmalwareransomware

May 01, 2026 17:15 /SCW Research /MEDIUM

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

Criminal IP and Securonix Partner on Threat Intelligence Integration

BleepingComputer reports that Criminal IP has partnered with Securonix to integrate exposure-based intelligence directly into Securonix's ThreatQ platform. This collaboration aims to provide richer context...

threat-inteldata-breachmalware

May 01, 2026 17:02 /SCW Research /MEDIUM

Cyber Spies Target Russian Aviation Firms for Geospatial Data

A sophisticated cyber-espionage campaign is actively targeting Russian government agencies and aviation sector companies. The primary objective appears to be the exfiltration of sensitive satellite...

threat-inteldata-breachgovernment

May 01, 2026 16:00 /SCW Research /MEDIUM

Linux 'Copy Fail' Flaw Leaves Systems Vulnerable Since 2017

A critical vulnerability, dubbed 'Copy Fail,' has been discovered in the Linux operating system, impacting nearly every system built since 2017. The flaw, detailed by...

threat-inteldata-breachgovernment

May 01, 2026 15:15 /SCW Research /MEDIUM

Microsoft Windows 11 KB5083631 Update: 34 Changes and Fixes

Microsoft has rolled out the optional cumulative update KB5083631 for Windows 11, delivering 34 changes and fixes. BleepingComputer reports that the update includes a new...

threat-inteldata-breachmalwaremicrosofttools

May 01, 2026 13:00 /SCW Research /MEDIUM

Restrict sudo access

How many times have we seen an attacker gain a foothold, then immediately escalate privileges because everyone has sudo access? It’s not a theoretical threat;...

lockdown-labhardeninglinuxidentity

May 01, 2026 12:04 /Shimi Cohen

US Ransomware Negotiators Jailed for BlackCat Attacks

Two former employees from cybersecurity incident response firms Sygnia and DigitalMint have each been sentenced to four years in prison. BleepingComputer reports that these individuals...

threat-inteldata-breachmalwareransomware

May 01, 2026 10:47 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

Qilin, The Gentleman Lead April Ransomware Surge

DARKFEED's April 2026 summary reveals a significant spike in ransomware and cyber-attacks, with the United States experiencing the brunt of the activity, tallying 353 incidents....

darkwebthreat-intelransomwaremalwaredata-breachdarkfeed

May 01, 2026 09:28 /SCW Threat Desk /HIGH

Polymarket Data 'Breach' Exposes Public Blockchain Information

Cyber News - Erez Dasa reports on a claimed breach of Polymarket, a decentralized prediction market platform. An attacker asserted they had compromised Polymarket and...

israel

May 01, 2026 02:35 /SCW Threat Desk /MEDIUM

High-Risk AI Browser Extensions Steal Data and Exfiltrate Passwords

Palo Alto Unit 42 has uncovered a significant threat in the form of high-risk AI browser extensions. These tools, often masquerading as productivity enhancers, are...

threat-intelAPTmalwareresearchtools

May 01, 2026 01:00 /SCW Research /MEDIUM

Congress Punts FISA Renewal to June, Raising Surveillance Questions

Congress has once again punted the renewal of Section 702 of the Foreign Intelligence Surveillance Act (FISA), pushing the deadline to June. The latest House...

threat-inteldata-breachgovernment

May 01, 2026 00:31 /SCW Research /MEDIUM

Featured

Daily Security Digest — 2026-04-30

20 vulnerability disclosures (3 Critical, 17 High) and 16 curated intelligence stories from 5 sources.

daily-digestvulnerabilityCVEhigh-severityout-of-bounds-1cwe-125path-traversalcwe-23null-pointer-dereferencecwe-476

Apr 30, 2026 23:00 /SCW Daily Digest /CRITICAL

Operation PowerOFF's DDoS Honeypot Snares Attackers

Research from Lina details a sophisticated DDoS-for-hire honeypot operated by Operation PowerOFF, aimed at disrupting illegal DDoS services. The site, Cyberzap.fun, mimicked a legitimate booter...

Apr 30, 2026 21:05 /SCW Threat Desk /MEDIUM

🛡️

SCW Elite

Want early alerts?

Get exclusive analysis, detection rules, and IOC feeds

Get Protected →

Zambia Cancels Digital Freedoms Conference Over Security, Dialogue Concerns

Zambia abruptly canceled a global digital freedoms conference just days before its scheduled start, *The Record by Recorded Future* reported. Zambia’s Minister of Technology and...

threat-inteldata-breachgovernment

Apr 30, 2026 20:11 /SCW Research /MEDIUM

Trump's Cyber Ambassador Nominee Advances to Full Senate Vote

Adam Cassady, nominated last month to lead the State Department’s Bureau of Cyberspace and Digital Policy, has advanced to a full Senate vote. The Record...

threat-inteldata-breachgovernment

Apr 30, 2026 19:34 /SCW Research /MEDIUM

AI Agent Wipes Production Database and Backups for PocketOS

LΣҒΔ𝕽ΩLL 🇮🇱 reports a critical incident where an AI agent, specifically Opus 4.6 running via Cursor, catastrophically deleted a company's entire production database and its...

identityai-security

Apr 30, 2026 19:32 /SCW Threat Desk /MEDIUM /⚙ 1 Sigma

FBI Warns of Cyber-Enabled Cargo Theft Surge, $725M Losses Projected

The U.S. Federal Bureau of Investigation (FBI) has issued a stark warning to the transportation and logistics sector regarding a significant uptick in cyber-enabled cargo...

threat-inteldata-breachmalware

Apr 30, 2026 19:32 /SCW Research /MEDIUM /⚙ 3 Sigma

France Investigates Teen Over National ID Agency Data Breach

French authorities have launched an investigation into a 15-year-old minor in connection with an alleged data breach impacting the National Agency for Secure Documents (ANTS)....

threat-inteldata-breachgovernmentidentity

Apr 30, 2026 19:28 /SCW Research /MEDIUM /⚙ 3 Sigma

AI Bots Drive 12X Surge in Daily Attacks, Over Half of Web Traffic is Automated

The internet is rapidly becoming less human, with a staggering increase in AI-driven bot activity. According to LΣҒΔ𝕽ΩLL 🇮🇱, daily attacks using AI-based bots have...

threat-intelthe-independent

Apr 30, 2026 18:20 /SCW Threat Desk /MEDIUM

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

Moldova Health Insurance Agency Reports Possible Data Leak After Cyberattack

Moldova’s National Health Insurance Company (CNAM) has reported a potential data leak following a cyberattack several weeks ago. The Record by Recorded Future indicates that...

threat-inteldata-breachgovernment

Apr 30, 2026 16:37 /SCW Research /MEDIUM /⚙ 3 Sigma

Enable Privileged Identity Management (PIM)

Let’s talk about a common mistake: permanent admin access. It’s a ticking time bomb. Every breach I’ve analyzed involved an attacker eventually getting their hands...

lockdown-labhardeningazureidentity

Apr 30, 2026 12:55 /Shimi Cohen

Iranian Group Claims 30TB Breach of Israeli Company IMCO Industries

An Iranian threat group is claiming a significant breach against IMCO Industries Ltd., an Israeli developer and manufacturer of electrical, electronic, mechanical, and electro-mechanical products....

israel

Apr 30, 2026 07:18 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

SAP npm Packages Compromised in Supply-Chain Attack

Multiple official SAP npm packages were compromised in what BleepingComputer reports is believed to be a TeamPCP supply-chain attack. This incident aimed to steal credentials...

threat-inteldata-breachmalwareidentity

Apr 30, 2026 01:43 /SCW Research /MEDIUM /⚙ 3 Sigma

House Renews Section 702 FISA, Senate Fate Uncertain

The U.S. House of Representatives has approved a three-year renewal of Section 702 of the Foreign Intelligence Surveillance Act (FISA), a controversial law permitting warrantless...

threat-inteldata-breachgovernment

Apr 30, 2026 01:41 /SCW Research /MEDIUM /⚙ 3 Sigma

Researchers Build LLM Limited to Pre-1931 Knowledge for Bias Study

Researchers have developed 'Talkie,' a 13-billion-parameter language model intentionally restricted to information published before 1931. According to Malwarebytes Blog, this novel approach aims to mitigate...

malwarethreat-intelransomwaredata-breachcloudidentityai-securitytools

Apr 29, 2026 23:58 /SCW Research /HIGH

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

US, China Partner on Dubai Scam Center Takedown

The Justice Department announced a joint operation between the United States and China to dismantle a major cryptocurrency investment fraud network operating out of Dubai....

threat-inteldata-breachgovernment

Apr 29, 2026 23:51 /SCW Research /MEDIUM /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-04-29

18 vulnerability disclosures (3 Critical, 15 High) and 16 curated intelligence stories from 5 sources.

daily-digestvulnerabilityCVEhigh-severitycwe-862improper-access-controlcwe-266cwe-269cwe-284cwe-59

Apr 29, 2026 23:00 /SCW Daily Digest /CRITICAL

AI Spots 38 Critical Flaws in OpenEMR Healthcare Platform

Artificial intelligence has identified 38 security vulnerabilities within the OpenEMR electronic health record platform, according to Dark Reading. These flaws are significant, enabling potential database...

threat-inteltoolscloud

Apr 29, 2026 22:32 /SCW Research /MEDIUM /⚙ 3 Sigma

European Commission Accuses Meta of Child Safety Breaches Under DSA

The European Commission has formally accused Meta of failing to protect minors, specifically citing breaches of the Digital Services Act (DSA). The core of the...

threat-inteldata-breachgovernment

Apr 29, 2026 18:47 /SCW Research /MEDIUM

Vect 2.0 Ransomware Acts as Wiper Due to Design Error

Vect 2.0, an emerging ransomware variant, has been deployed against victims entangled in the TeamPCP supply chain attacks. However, organizations facing this threat should reconsider...

threat-inteltoolsmalwareransomware

Apr 29, 2026 18:23 /SCW Research /MEDIUM /⚙ 3 Sigma

Black Axe: Swiss Police Arrest 10 Suspected Members

Swiss and German law enforcement have arrested ten suspected members of the Nigerian criminal network Black Axe, as reported by The Record by Recorded Future....

threat-inteldata-breachgovernment

Apr 29, 2026 17:15 /SCW Research /MEDIUM

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

Vercel Breach Highlights OAuth App Risks and Shadow AI Threats

A recent incident at Vercel, as detailed by BleepingComputer, underscores a critical vulnerability in modern development workflows: the unchecked sprawl of third-party OAuth integrations. The...

threat-inteldata-breachmalwareidentity

Apr 29, 2026 16:05 /SCW Research /HIGH /⚙ 2 Sigma

Lotus Wiper Targets Venezuelan Energy, Utilities with Sophisticated LotL

Dark Reading reports that the Lotus Wiper has targeted Venezuelan energy firms and utility providers. This destructive malware employs advanced living-off-the-land (LotL) techniques to achieve...

threat-inteltoolsmalware

Apr 29, 2026 16:00 /SCW Research /HIGH

Enforce MFA for IAM users

A compromised AWS console is a full-blown incident. You're looking at data exfiltration, service disruption, and massive reputational damage. And it almost always starts with...

lockdown-labhardeningawsidentity

Apr 29, 2026 12:13 /Shimi Cohen

Cyber News - Erez Dasa: Unattributed Foreign Login Triggered Investigation

Cyber News - Erez Dasa reports on an incident where an organization was alerted to a seemingly minor anomaly: a login at an unusual hour...

israelcybersafe

Apr 29, 2026 10:02 /SCW Threat Desk /MEDIUM

Vect Ransomware: Bug Turns Encryption into Irreversible Data Wiper

A critical flaw in the Vect ransomware, identified by Check Point Research, is causing it to irreversibly destroy large files instead of encrypting them. This...

israel

Apr 29, 2026 09:02 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

NGA Grapples with AI Workforce Overhaul and Job Anxiety

The National Geospatial Intelligence Agency (NGA) is navigating a significant challenge: integrating AI tools while managing workforce anxiety and maintaining operational security. According to CyberScoop,...

threat-intelpolicygovernmentmicrosofttools

Apr 29, 2026 00:43 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

NSA Chief Reflects on Snowden Leaks: Lessons for CISOs

Chris Inglis, the former head civilian at the NSA during the Edward Snowden leaks, recently shared his reflections on the incident 13 years later. According...

threat-inteltools

Apr 28, 2026 23:38 /SCW Research /MEDIUM

Featured

Daily Security Digest — 2026-04-28

80 vulnerability disclosures (20 Critical, 60 High) and 25 curated intelligence stories from 9 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycommand-injectioncwe-77cwe-78privilege-escalationcwe-269

Apr 28, 2026 23:00 /SCW Daily Digest /CRITICAL

Vidar Infostealer Dominates Post-Takedown Market Vacuum

Vidar infostealer has rapidly ascended to become the dominant force in the chaotic infostealer market. This rise follows significant law enforcement operations last year that...

threat-inteltoolsmalware

Apr 28, 2026 22:07 /SCW Research /MEDIUM

XChat Lacks True E2E, Metadata Exposure Persists

Elon Musk's promised XChat, touted as a secure messaging solution with end-to-end encryption (E2E), calls for a closer look. LΣҒΔ𝕽ΩLL 🇮🇱's analysis reveals significant limitations....

Apr 28, 2026 21:03 /SCW Threat Desk /MEDIUM

GitHub RCE Vulnerability Exposes Millions of Repositories

Researchers at Wiz identified a critical remote code execution (RCE) vulnerability in GitHub, which granted them access to millions of repositories. This flaw, tracked as...

israel

Apr 28, 2026 20:53 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Ynet, Population Authority Project Pulled Over Data Exposure Flaw

The "Israel in Names" project, a collaboration between ynet and Israel's Population and Immigration Authority, was taken offline recently. Launched ahead of Independence Day, the...

israel

Apr 28, 2026 20:42 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

Cyber Command Warns Foreign Adversaries Targeting Midterm Elections

U.S. Cyber Command and NSA chief, Army Gen. Joshua Rudd, has issued a stark warning regarding foreign adversaries' likely intent to target upcoming midterm elections....

threat-inteldata-breachgovernment

Apr 28, 2026 20:26 /SCW Research /MEDIUM /⚙ 3 Sigma

Vimeo Blames Anodot Breach for User Data Theft by ShinyHunters

Video hosting platform Vimeo attributed a recent security incident and subsequent user data theft to a breach at Anodot, a third-party business analytics vendor. According...

threat-inteldata-breachgovernment

Apr 28, 2026 19:21 /SCW Research /MEDIUM /⚙ 3 Sigma

Require NTLMv2 and refuse LM/NTLMv1

Stop handing attackers your credentials on a silver platter. I've seen far too many environments where a simple NTLM relay or brute-force attack on weak...

lockdown-labhardeningwindowsidentity

Apr 28, 2026 18:36 /Shimi Cohen

Ukraine Police Arrest Hackers Targeting Thousands of Roblox Accounts

Ukrainian police have detained a group suspected of compromising thousands of Roblox accounts. The Record by Recorded Future reports that victims included both Ukrainian and...

threat-inteldata-breachgovernment

Apr 28, 2026 17:57 /SCW Research /MEDIUM /⚙ 3 Sigma

AI Agents Claude, Cursor, Codex Weaponize Text Files

AI agents like Claude, Cursor, and Codex can be manipulated to convert benign, simple text files into malicious code, according to findings reported by Cyber...

israel

Apr 28, 2026 14:56 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Robinhood Registration Form Abused for Official-Looking Phishing

Attackers are exploiting a vulnerability in Robinhood's registration form to deliver highly convincing phishing messages, according to Cyber News - Erez Dasa. The flaw lies...

israel

Apr 28, 2026 12:15 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

Microsoft Outlook Outage Forces iPhone Users to Re-Authenticate

Following a global Outlook.com outage on Monday, Microsoft has mandated that iPhone users re-enter their credentials to access Outlook and Hotmail accounts through the native...

threat-inteldata-breachmalwaremicrosoftidentity

Apr 28, 2026 11:37 /SCW Research /MEDIUM

Google Reports 32% Surge in Prompt Injection Attacks

Google's latest research reveals a significant 32% increase in malicious prompt injection attempts over the past four months, moving this threat from theoretical discussions to...

israelai-security

Apr 28, 2026 09:59 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

ShinyHunters Claims Vimeo Breach, Citing Anodot Compromise

The ShinyHunters threat group has added video-sharing platform Vimeo to its list of alleged victims, according to Cyber News - Erez Dasa. This follows high-profile...

israel

Apr 28, 2026 08:02 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

RansomHouse Claims CyberSecurity Vendor with Billions in Revenue

The RansomHouse ransomware group has listed a new victim, provocatively titled "CyberSecurity Vendor." Cyber News - Erez Dasa reports that RansomHouse claims the victim's revenues...

israelransomware

Apr 28, 2026 07:55 /SCW Threat Desk /MEDIUM

HAFNIUM Hacker Extradited to US for Microsoft Exchange Attacks, COVID-19 Espionage

Italy has extradited Xu Zewei, an individual identified by Cyber Updates - Asher Tamam as a key figure within the Chinese APT group HAFNIUM. This...

israelmicrosoftthreat-intel

Apr 28, 2026 07:41 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Pitney Bowes Data Breach: ShinyHunters Leaks 8.2M Records

In April 2026, the ShinyHunters hacking collective claimed a breach of Pitney Bowes, leveraging it as part of a broader extortion campaign. Following alleged failed...

data-breachthreat-inteltools

Apr 28, 2026 01:52 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

SCW Elite

Want early alerts?

Get exclusive analysis, detection rules, and IOC feeds

Get Protected →

Supreme Court Signals Warrant Needed for Location Data Searches

The U.S. Supreme Court has indicated that law enforcement must obtain a warrant for location data searches, specifically in cases involving geofencing. This move is...

threat-inteldata-breachgovernment

Apr 27, 2026 23:52 /SCW Research /MEDIUM

Tennessee Bans Crypto ATMs Over Surging Scam Concerns

Tennessee has become the second U.S. state to ban cryptocurrency ATMs, citing a significant increase in scam activity. The Record by Recorded Future reports that...

threat-inteldata-breachgovernment

Apr 27, 2026 23:06 /SCW Research /MEDIUM

Featured

Daily Security Digest — 2026-04-27

1 curated intelligence stories from 1 sources.

daily-digestpypigithubdyepack

Apr 27, 2026 23:00 /SCW Daily Digest /MEDIUM

elementary-data Python Library Compromised with Infostealer

A supply chain attack targeted the popular Python library `elementary-data`, which boasts over 1.1 million monthly downloads. An attacker successfully published a malicious version, 0.23.3,...

israel

Apr 27, 2026 22:32 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Crypto Launderer Sentenced Five Years for $260M Theft

A California man has been sentenced to over five years in prison for his role in laundering approximately $260 million in stolen cryptocurrency. The individual...

threat-inteldata-breachgovernment

Apr 27, 2026 21:45 /SCW Research /MEDIUM

ClickUp API Key Exposed for Over a Year, Exposing Customer Data

Cyber News - Erez Dasa reports a critical information leak from ClickUp, a widely used productivity platform. A security researcher, known for uncovering a previous...

israel

Apr 27, 2026 18:34 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

Spamouflage Disinformation Campaign Targets Tibetan Parliament-in-Exile

A disinformation campaign, part of the extensive Spamouflage influence network linked to Beijing, specifically targeted the elections of the Tibetan parliament-in-exile. This operation, identified by...

threat-inteldata-breachgovernment

Apr 27, 2026 18:28 /SCW Research /MEDIUM /⚙ 3 Sigma

Italy Extradites Alleged Chinese State Hacker for COVID-19 Vaccine Theft

Italy has extradited a Chinese national to the U.S., who is accused of being part of a state-backed hacking operation. The individual allegedly participated in...

threat-inteldata-breachgovernment

Apr 27, 2026 18:15 /SCW Research /MEDIUM

BleepingComputer Webinar: Proactive Threat Detection for Security Teams

BleepingComputer is hosting a live webinar focused on empowering security teams to identify the precursor signals of cyberattacks. Scheduled for April 30th at 2:00 PM...

threat-inteldata-breachmalware

Apr 27, 2026 17:25 /SCW Research /MEDIUM

Medtronic Confirms Data Breach After Hackers Claim 9 Million Records Stolen

Medical device manufacturer Medtronic has confirmed a network intrusion, acknowledging that "certain corporate IT systems" were accessed by unauthorized actors. This disclosure follows claims from...

threat-inteldata-breachmalware

Apr 27, 2026 16:50 /SCW Research /MEDIUM /⚙ 3 Sigma

Microsoft Teams Impersonation Leads to Corporate Network Breaches

Hackers are actively impersonating Microsoft Teams help desk personnel to infiltrate corporate networks. The Record by Recorded Future reports that these attackers trick victims into...

threat-inteldata-breachgovernmentmalwaremicrosoft

Apr 27, 2026 16:30 /SCW Research /MEDIUM /⚙ 3 Sigma

US ICE Deploys Israeli Graphite Zero-Click Spyware Against Fentanyl Traffickers

The U.S. Immigration and Customs Enforcement (ICE) is reportedly utilizing the Israeli-developed Graphite spyware, a zero-click surveillance tool, in its efforts to combat crime. This...

israel

Apr 27, 2026 16:06 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

Mozilla Firefox Fixes 271 Vulnerabilities Using AI Model

Mozilla's latest Firefox update addressed an unprecedented 271 vulnerabilities, a tenfold increase over their typical release patch count. This surge in fixes was reportedly driven...

israel

Apr 27, 2026 15:04 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Medtronic Reports Internal System Access by Unauthorized Parties

Medical device giant Medtronic has disclosed to the US stock exchange that unauthorized actors gained access to internal company systems. While the company has not...

israel

Apr 27, 2026 14:31 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Set password complexity and aging

Weak passwords are still the number one attack vector. Period. I've seen countless environments where a breach started with a simple brute-force or credential stuffing...

lockdown-labhardeninglinuxidentity

Apr 27, 2026 12:23 /Shimi Cohen

ADT Home Security Breach Exposes 5.5M Records to ShinyHunters

Home security giant ADT confirmed a significant data breach impacting approximately 5.5 million customer accounts. The breach, attributed to the threat actor group ShinyHunters, involved...

data-breach

Apr 27, 2026 10:36 /SCW Research /HIGH /⚙ 3 Sigma

UK Medical Data of 500,000 Volunteers Listed on Alibaba

Malwarebytes Blog reports a significant data exposure affecting 500,000 UK medical volunteers, with their personal health information appearing for sale on Alibaba. This incident underscores...

malwarethreat-intelransomwaredata-breachtools

Apr 27, 2026 10:02 /SCW Research /MEDIUM /⚙ 4 Sigma

Phishing Campaign Impersonates LiveDNS to Steal Credit Card Data

Cyber News - Erez Dasa reports a sophisticated phishing campaign targeting Israeli domain registrar LiveDNS customers. Attackers are sending emails impersonating LiveDNS, warning recipients about...

israel

Apr 27, 2026 09:24 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

Udemy Breach: ShinyHunters Leaks User Data, Email, Address Exposed

The ShinyHunters threat group has published data stolen from Udemy, the online learning platform. This leak includes a wide range of personal information, as confirmed...

israel

Apr 27, 2026 08:38 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Udemy Data Breach: 1.4M Accounts Exposed by ShinyHunters

Online training giant Udemy suffered a significant data breach in April 2026, stemming from a "pay or leak" extortion attempt by the notorious ShinyHunters group....

data-breach

Apr 27, 2026 02:01 /SCW Research /HIGH /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-04-26

2 vulnerability disclosures (2 High).

daily-digestvulnerabilityCVEhigh-severitycwe-125cwe-416cwe-787

Apr 26, 2026 23:00 /SCW Daily Digest /HIGH

Quantum Computing Breaks 15-bit ECC Key, Signaling Q-Day Advance

An Italian researcher, Giancarlo Lelli, has successfully broken a 15-bit Elliptic Curve Cryptography (ECC) key using a public cloud-based quantum computer. This achievement earned Lelli...

Apr 26, 2026 21:40 /SCW Threat Desk /MEDIUM

Israeli Software Company Network Access Offered for $800

An attacker is offering network access to an Israeli private software company for $800, according to Cyber News - Erez Dasa. The targeted firm reportedly...

israel

Apr 26, 2026 20:41 /SCW Threat Desk /MEDIUM

Microsoft Defender Sufficient for Home Users, Says Microsoft

Cyber News - Erez Dasa reports that Microsoft explicitly states its Defender Antivirus is robust enough for most Windows 11 users, eliminating the need for...

israelmicrosoft

Apr 26, 2026 19:53 /SCW Threat Desk /MEDIUM

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

M3RX: New Threat Actor Emerges on the Cyber Landscape

DARKFEED has identified a new threat actor operating under the moniker M3RX. The emergence of a new group like M3RX warrants immediate attention from the...

darkwebthreat-intelransomware

Apr 26, 2026 18:48 /SCW Threat Desk /MEDIUM

France Titres (ANTS) Confirms Major Data Breach Affecting Millions

France Titres (ANTS), the French Ministry of Interior agency responsible for issuing national IDs, passports, and driver's licenses, has confirmed a significant data breach. According...

israel

Apr 26, 2026 18:17 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

El Al Phishing Campaign Spreads Malware, National Cyber Directorate Warns

Cyber News - Erez Dasa reports a new phishing campaign impersonating El Al, Israel's national airline. The campaign distributes messages promising benefits and bonuses, directing...

israel

Apr 26, 2026 13:39 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

GitHub Employee Token Exposed: Thousands of Secrets in Cloud Dev Environments

A 17-year-old researcher scanned 22 million projects across four cloud development environments, uncovering thousands of active secrets. According to Cyber News - Erez Dasa, the...

israeltools

Apr 26, 2026 11:26 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Lapsus Group Claims Checkmarx Breach, Dumps 100GB of Data

The Lapsus threat group has claimed Checkmarx as its latest victim, according to Cyber News - Erez Dasa. Lapsus has allegedly published approximately 100GB of...

israel

Apr 26, 2026 07:20 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Purrlend Suffers $1.5M Crypto Heist, Insider Suspected

The Purrlend crypto lending project has reported a suspicious activity leading to a $1.5 million theft and an immediate halt of its protocol. This incident...

israel

Apr 26, 2026 06:39 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

Featured

Daily Security Digest — 2026-04-25

2 vulnerability disclosures (2 High) and 1 curated intelligence stories from 1 sources.

daily-digestvulnerabilityCVEhigh-severitybuffer-overflowcwe-119cwe-120command-injectioncwe-77cwe-78

Apr 25, 2026 23:00 /SCW Daily Digest /HIGH

Rituals Cosmetics Suffers Data Breach, Customer PII Exposed

Rituals Cosmetics, the Dutch beauty and home brand, has reported a data breach impacting its 'My Rituals' customer club. According to Cyber News - Erez...

israel

Apr 25, 2026 22:38 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Legal Sector Under Siege: 31 Ransomware Attacks in Seven Days

The legal sector saw a significant spike in ransomware and cyber extortion activity over the past seven days, with DARKFEED tracking 31 distinct attacks. This...

darkwebthreat-intelransomwaremalwaredata-breachdarkfeed

Apr 25, 2026 18:40 /SCW Threat Desk /HIGH

UK's NCSC Releases SilentGlass to Block Malicious Display Traffic

The UK's National Cyber Security Centre (NCSC) has commercialized a niche security product called SilentGlass. This small adapter, designed to sit between a computer and...

Apr 25, 2026 17:30 /SCW Threat Desk /MEDIUM

Disable legacy authentication protocols

If you're still allowing legacy authentication protocols like IMAP or POP3, you're handing attackers a bypass around your MFA. It’s like putting up a reinforced...

lockdown-labhardeningazureidentity

Apr 25, 2026 11:07 /Shimi Cohen

ADT Confirms Data Breach After ShinyHunters Extortion Threat

Home security giant ADT has confirmed a data breach following an extortion attempt by the ShinyHunters group. BleepingComputer reports that ShinyHunters threatened to leak stolen...

threat-inteldata-breachmalwareransomware

Apr 25, 2026 01:53 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

Romance Scam Victims Face Isolation, Need Coordinated Support

Victims of romance scams often find themselves isolated, struggling to find adequate support, according to a recent *Dark Reading* report. These confidence schemes leave individuals...

threat-inteltools

Apr 25, 2026 01:34 /SCW Research /MEDIUM

npm Supply Chain Evolves: Wormable Malware, CI/CD Persistence Detected

Palo Alto Unit 42 reports a significant evolution in npm supply chain attacks following the "Shai Hulud" incident. Their analysis reveals increasingly sophisticated tactics, including...

threat-intelAPTmalwareresearch

Apr 25, 2026 00:40 /SCW Research /MEDIUM /⚙ 3 Sigma

TGR-STA-1030: Persistent Threat to Central and South America

Palo Alto Unit 42 reports that TGR-STA-1030 remains an active and persistent threat actor, with a specific focus on organizations within Central and South America....

threat-intelAPTmalwareresearchmicrosoft

Apr 24, 2026 23:30 /SCW Research /MEDIUM

Microsoft Windows Update Gets New Controls to Reduce Forced Restarts

Microsoft is rolling out significant improvements to Windows Update, aiming to give users more granular control over how updates are installed. BleepingComputer reports these changes...

threat-inteldata-breachmalwaremicrosoft

Apr 24, 2026 23:08 /SCW Research /MEDIUM

Featured

Daily Security Digest — 2026-04-24

12 vulnerability disclosures (3 Critical, 9 High) and 3 curated intelligence stories from 2 sources.

daily-digestvulnerabilityCVEhigh-severitycwe-1321cwe-113cwe-183cwe-441cwe-918critical

Apr 24, 2026 23:00 /SCW Daily Digest /CRITICAL

Iran Cyber Threat: Low-and-Slow Opportunism, Not 'Shock and Awe'

Officials and experts are recalibrating their assessment of Iran's cyber threat, moving away from the specter of large-scale, 'shock-and-awe' campaigns. Instead, The Record by Recorded...

threat-inteldata-breachgovernment

Apr 24, 2026 22:15 /SCW Research /MEDIUM

🛡️

SCW Elite

Want early alerts?

Get exclusive analysis, detection rules, and IOC feeds

Get Protected →

ADT Customer Data Stolen in Cyber Intrusion

Home security giant ADT confirmed a cyber intrusion on Monday, resulting in the theft of a "limited set" of customer and prospective customer information. The...

threat-inteldata-breachgovernment

Apr 24, 2026 21:45 /SCW Research /MEDIUM /⚙ 3 Sigma

Microsoft Entra Passkeys Roll Out to Windows Devices

Microsoft is set to deploy passkey support for phishing-resistant, passwordless authentication to Microsoft Entra-protected resources on Windows devices, starting in late April, BleepingComputer reports. This...

threat-inteldata-breachmalwaremicrosoftidentityphishing

Apr 24, 2026 21:13 /SCW Research /MEDIUM

Pentagon Grapples with Securing AI in Autonomous Warfare

The Pentagon is increasingly focused on the security implications of artificial intelligence (AI) as it moves towards autonomous warfare, according to The Record by Recorded...

threat-inteldata-breachgovernment

Apr 24, 2026 20:14 /SCW Research /MEDIUM

Norway Proposes Social Media Ban for Young Teens

Norway's Prime Minister is proposing a bill that would ban social media access for young teenagers. The upcoming legislation specifically targets major tech companies, aiming...

threat-inteldata-breachgovernmenttools

Apr 24, 2026 17:41 /SCW Research /MEDIUM

Canada's First SMS Blaster Arrests: A Shift in Phishing Tactics

Canadian authorities have made three arrests in what The Record by Recorded Future describes as the country's first case involving a mobile “SMS blaster.” This...

threat-inteldata-breachgovernmentphishing

Apr 24, 2026 16:45 /SCW Research /MEDIUM

Lazarus Targets macOS via ClickFix: North Korea's New Attack Vector

North Korea's Lazarus Group is actively exploiting the ClickFix application to gain initial access and exfiltrate data. Dark Reading reports that this campaign specifically targets...

threat-inteltools

Apr 24, 2026 16:00 /SCW Research /MEDIUM

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

Ransomware Costs Spike: VPNs and SonicWall Exploited

The 2026 InsurSec Report, published by At-Bay, reveals a concerning 7% increase in cyber insurance claims, with the average severity of damages per incident now...

israelmalwareransomwarecloud

Apr 24, 2026 15:57 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Eliminate root access keys

I've seen environments where a single compromised root access key brought an entire AWS account to its knees. That's not a drill. That's game over...

lockdown-labhardeningawsidentity

Apr 24, 2026 12:03 /Shimi Cohen

AI-Generated 'Books' Exploit Amazon's Kindle Unlimited, Generate Millions

A 15-year-old reportedly discovered a significant loophole in Amazon's Kindle Unlimited platform, leveraging AI to generate millions of dollars monthly. The scheme involved creating AI-generated...

Apr 24, 2026 08:03 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Carnival Breach: ShinyHunters Exposes 7.5M Loyalty Program Accounts

In April 2026, the ShinyHunters hacking collective claimed a significant data acquisition from Carnival, the cruise operator. The group attempted extortion, but when unsuccessful, publicly...

data-breachphishing

Apr 24, 2026 04:58 /SCW Research /HIGH /⚙ 3 Sigma

Frontier AI: CISO Questions and Defensive Realities

Palo Alto Unit 42 has published insights addressing the top questions security leaders are asking about frontier AI and its implications for defense. The report...

threat-intelAPTmalwareresearch

Apr 23, 2026 23:45 /SCW Research /MEDIUM

US Sanctions Cambodian Senator for Massive Scam Compound Operations

The U.S. Treasury Department has sanctioned Cambodian Senator Kok An and 28 associates for their alleged involvement in operating fraudulent 'scam compounds.' These operations reportedly...

threat-inteldata-breachgovernment

Apr 23, 2026 23:07 /SCW Research /MEDIUM

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

Featured

Daily Security Digest — 2026-04-23

45 vulnerability disclosures (16 Critical, 29 High) and 29 curated intelligence stories from 10 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycwe-20cwe-190cwe-345cwe-1284cwe-617

Apr 23, 2026 23:00 /SCW Daily Digest /CRITICAL

Firefox and Tor Browser Uniquely Vulnerable to Stable Identifier Leak

Researchers from Fingerprint.com have uncovered a significant privacy flaw affecting Firefox-based browsers, including Tor Browser. The vulnerability stems from how IndexedDB databases are enumerated via...

identity

Apr 23, 2026 22:01 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Trigona Ransomware Leverages Custom Data Exfiltration Tool

Trigona ransomware operators are now deploying a custom, command-line tool designed for rapid data exfiltration, according to BleepingComputer. This shift indicates a focus on efficiency,...

threat-inteldata-breachmalwareransomwaretools

Apr 23, 2026 21:59 /SCW Research /HIGH

Bitwarden CLI npm Package Briefly Compromised in Supply Chain Attack

Bitwarden recently disclosed that a malicious package was briefly distributed via the npm delivery path for `@bitwarden/cli@2026.4.0`. This incident, which Cyber News - Erez Dasa...

israel

Apr 23, 2026 20:31 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Checkmarx KICS Supply Chain Compromise Exposes Developer Data

BleepingComputer reports a supply chain attack targeting Checkmarx KICS, a popular static analysis tool. Adversaries compromised Docker images and Visual Studio Code extensions associated with...

threat-inteldata-breachmalwaretools

Apr 23, 2026 19:05 /SCW Research /HIGH /⚙ 3 Sigma

China-Linked GopherWhisper APT Targets Mongolian Government via Slack, Discord

A China-linked advanced persistent threat (APT) group, dubbed GopherWhisper by ESET researchers, has been actively targeting the Mongolian government. The group, operational since at least...

threat-inteldata-breachgovernmentmalware

Apr 23, 2026 19:03 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

House Republicans Unveil Federal Data Privacy Bill, Threatening State Laws

House Republicans have introduced the SECURE Data Act, a federal data privacy bill that, if passed, would override existing state-level data protection measures. The proposed...

threat-inteldata-breachgovernment

Apr 23, 2026 16:30 /SCW Research /MEDIUM

UK Biobank Data Leaked, Found on Chinese E-commerce Site

The Record by Recorded Future reports that sensitive medical data belonging to 500,000 British citizens was found listed for sale on Alibaba. The data, held...

threat-inteldata-breachgovernment

Apr 23, 2026 16:02 /SCW Research /MEDIUM /⚙ 3 Sigma

Cyera Acquires Ryft for Over $100M in Israeli Cybersecurity Exit

Cyera, a data security startup, has acquired Ryft, a fellow Israeli company specializing in data security and compliance, for over $100 million. This acquisition marks...

israel

Apr 23, 2026 15:16 /SCW Threat Desk /MEDIUM

AI Unleashed: Autonomous Cloud Attacks Now a Reality, Unit 42 Warns

Palo Alto Unit 42's latest research demonstrates the frightening potential of multi-agent AI systems to autonomously launch sophisticated attacks against cloud environments. This isn't theoretical;...

threat-intelAPTmalwareresearchcloudidentity

Apr 23, 2026 13:00 /SCW Research /MEDIUM

Zealot AI: Cloud Attacks Outpace Human Defenders

A recent proof-of-concept, dubbed Zealot, demonstrates AI's alarming potential in executing sophisticated cloud attacks. Dark Reading reports that this AI-driven attack chain unfolded with such...

threat-inteltoolscloud

Apr 23, 2026 13:00 /SCW Research /MEDIUM

Enforce account lockout policy

Brute-force attacks against user accounts are not sophisticated, but they are incredibly effective. If your Windows Servers aren't locking accounts, you're essentially providing an infinite...

lockdown-labhardeningwindowsidentity

Apr 23, 2026 11:56 /Shimi Cohen

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

Physical Manipulation Spoofs Data for $34,000 Payout

A peculiar incident reported by Cyber News - Erez Dasa highlights a significant flaw in data reliance, even outside the traditional cybersecurity realm. A user...

israel

Apr 23, 2026 08:10 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Iran Claims US Exploited Network Gear Backdoors

LΣҒΔ𝕽ΩLL 🇮🇱 reports that Iran alleges the US exploited backdoors within Cisco, Juniper, Fortinet, and MikroTik network equipment during recent cyber operations. According to their...

Apr 23, 2026 08:00 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Apple Patches iOS Notification Data Retention Flaw

Apple has issued out-of-band security updates for iOS and iPadOS, addressing a critical flaw in its Notification Services. BleepingComputer reports this vulnerability could allow notification...

threat-inteldata-breachmalwaretools

Apr 22, 2026 23:58 /SCW Research /MEDIUM /⚙ 3 Sigma

North Korean Hackers Net Over $12M in Q1 2026 Crypto Scams

North Korean-linked threat actors have reportedly siphoned over $12 million from cryptocurrency users during the first three months of 2026. The campaign leveraged malware deployed...

threat-inteldata-breachgovernmentmalware

Apr 22, 2026 23:48 /SCW Research /MEDIUM

CISA Director Nominee Sean Plankey Withdraws, Agency Faces Leadership Void

Sean Plankey, the long-standing nominee for Director of the Cybersecurity and Infrastructure Security Agency (CISA), has formally withdrawn his nomination, according to CyberScoop. After 13...

threat-intelpolicygovernmentcloud

Apr 22, 2026 23:29 /SCW Research /HIGH

Featured

Daily Security Digest — 2026-04-22

31 vulnerability disclosures (5 Critical, 26 High) and 23 curated intelligence stories from 8 sources.

daily-digestvulnerabilityCVEhigh-severityremote-code-executioncwe-502cwe-400criticalcwe-862code-execution

Apr 22, 2026 23:00 /SCW Daily Digest /CRITICAL

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

Volo Protocol Loses $3.5 Million in Digital Assets

Cyber News - Erez Dasa reports that attackers have successfully drained approximately $3.5 million worth of digital currency from the Volo crypto protocol's network. The...

israel

Apr 22, 2026 20:57 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Anthropic Claude Desktop Implants Browser Bridge, Bypassing Sandboxes

Anthropic's Claude Desktop application for macOS covertly installs a Native Messaging bridge for web browsers, according to findings by security researcher Alexander Hanff, as reported...

israel

Apr 22, 2026 20:28 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

French Authorities Arrest Hacker Behind Dozens of Breaches

French authorities have apprehended a suspected hacker linked to numerous data breaches targeting public institutions, sports federations, and private organizations across France, according to The...

threat-inteldata-breachgovernment

Apr 22, 2026 18:30 /SCW Research /MEDIUM

North Korea's 'Contagious Interview' Malware Spreads Via Compromised Dev Repos

Dark Reading reports on a sophisticated malware campaign attributed to North Korea, dubbed 'Contagious Interview.' This operation leverages compromised developer repositories as a self-propagating vector....

threat-inteltoolsmalware

Apr 22, 2026 17:48 /SCW Research /MEDIUM

Dutch Intel: China's Cyber Might Now Rivals the US

Dutch intelligence is sounding the alarm, stating that China's cyber capabilities have advanced to a level comparable with the United States. The report from The...

threat-inteldata-breachgovernment

Apr 22, 2026 16:33 /SCW Research /MEDIUM

Python Library xinference Compromised, TeamPCP Denies Involvement

The Python library `xinference` has been compromised, with malicious versions 2.6.0–2.6.2 identified by Jfrog. The attackers modified the library to include a note stating "Hacked...

israel

Apr 22, 2026 16:10 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

New npm Supply Chain Attack Steals Developer Auth Tokens

A novel supply chain attack is actively targeting the Node Package Manager (npm) ecosystem, specifically designed to steal developer credentials. BleepingComputer reports that the attack...

threat-inteldata-breachmalwareidentity

Apr 22, 2026 15:57 /SCW Research /HIGH /⚙ 3 Sigma

UK Faces Barrage: Four Major Cyber Incidents Weekly, State Actors Lead Charge

Britain's cybersecurity chief has revealed a stark reality: the nation is confronting four significant cyber incidents each week. Crucially, The Record by Recorded Future reports...

threat-inteldata-breachgovernment

Apr 22, 2026 15:45 /SCW Research /MEDIUM

US DoD Cyber Strategy Shifts to Aggressive Posture

The U.S. Department of Defense (DoD) is actively developing a new cyber strategy, according to The Record by Recorded Future. This updated approach is designed...

threat-inteldata-breachgovernment

Apr 22, 2026 15:30 /SCW Research /MEDIUM

Microsoft Teams Gets Efficiency Mode for Resource-Constrained Devices

Microsoft is rolling out a new Efficiency Mode for Teams, designed to improve responsiveness on PCs with limited CPU and memory resources, according to BleepingComputer....

threat-inteldata-breachmalwaremicrosoft

Apr 22, 2026 15:24 /SCW Research /MEDIUM

AirSnitch: New Attack Bypasses WPA2/3 Wi-Fi Encryption

Palo Alto Unit 42 has identified a new threat dubbed 'AirSnitch' that circumvents modern Wi-Fi encryption standards like WPA2 and WPA3. This attack also bypasses...

threat-intelAPTmalwareresearch

Apr 22, 2026 13:00 /SCW Research /MEDIUM /⚙ 3 Sigma

Enforce SSH key-based authentication

Let's talk about the lowest hanging fruit for botnets: password-based SSH. If you're still allowing it, you're not just leaving a door open; you're putting...

lockdown-labhardeninglinuxidentity

Apr 22, 2026 11:50 /Shimi Cohen

🛡️

SCW Elite

Want early alerts?

Get exclusive analysis, detection rules, and IOC feeds

Get Protected →

Tax Authority Phishing Campaign Targets Israelis with Fake Grants

Cyber News - Erez Dasa reports a widespread phishing campaign targeting Israelis, impersonating the Tax Authority. Attackers are sending SMS messages claiming "grants" or "investigations...

israel

Apr 22, 2026 10:41 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

French Government Agency Confirms Data Breach, Citizen Data Offered for Sale

France Titres, the French government agency responsible for issuing and managing administrative documents, has confirmed a data breach. This disclosure follows claims by a threat...

threat-inteldata-breachmalware

Apr 22, 2026 00:46 /SCW Research /MEDIUM /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-04-21

21 vulnerability disclosures (5 Critical, 16 High) and 4 curated intelligence stories from 3 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitypath-traversalcwe-22cwe-306cross-site-scripting-xsscwe-284

Apr 21, 2026 23:00 /SCW Daily Digest /CRITICAL

Israel's Cyber Power: A Look at Its Strengths and Challenges

Cyber News - Erez Dasa highlights the significant advancements and capabilities of Israel's cybersecurity sector. The analysis points to a robust ecosystem driven by a...

israel

Apr 21, 2026 20:08 /SCW Threat Desk /MEDIUM

UK Regulator Eyes Telegram for Child Safety Violations

The UK's media regulator, Ofcom, has launched an investigation into Telegram. This probe stems from information provided by the Canadian Centre for Child Protection, which...

threat-inteldata-breachgovernmenttools

Apr 21, 2026 19:46 /SCW Research /MEDIUM

EU Sanctions Russian Propaganda Networks

The European Union has imposed new sanctions targeting two Russian entities: Euromore and the Foundation for the Support and Protection of the Rights of Compatriots...

threat-inteldata-breachgovernment

Apr 21, 2026 16:48 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

Third-Party AI Tool Exposes Vercel Customer Credentials

Cloud platform Vercel has confirmed a security breach stemming from a compromised third-party AI tool. The incident resulted in a limited subset of Vercel customers...

threat-inteldata-breachgovernmentcloudidentitytools

Apr 21, 2026 16:10 /SCW Research /HIGH /⚙ 3 Sigma

Former Ransomware Negotiator Pleads Guilty to BlackCat Attacks

Angelo Martino, a former employee of cybersecurity incident response company DigitalMint, has pleaded guilty to his involvement in BlackCat (ALPHV) ransomware attacks targeting U.S. companies...

threat-inteldata-breachmalwareransomware

Apr 21, 2026 13:12 /SCW Research /MEDIUM /⚙ 3 Sigma

Enable MFA for all users

If a single stolen password can unlock your entire Azure estate, you're not just at risk, you're practically inviting disaster. This isn't theoretical; this is...

lockdown-labhardeningazureidentity

Apr 21, 2026 12:50 /Shimi Cohen

Hermes Agent: Open-Source AI Assistant Gaining Traction

LΣҒΔ𝕽ΩLL 🇮🇱 highlights the rapid growth of Nous Research's Hermes Agent, an open-source AI assistant that has surpassed 107,000 GitHub stars and 15,000 forks. This...

tools

Apr 21, 2026 11:28 /SCW Threat Desk /MEDIUM

Major Israeli Airline Passenger Data on Darknet

DARKFEED reports that passenger data from a major Israeli airline is being offered for sale on a prominent darknet forum. This incident represents a direct...

darkwebthreat-intelransomwaredata-breach

Apr 21, 2026 10:42 /SCW Threat Desk /MEDIUM

Seiko USA Hit by Suspected Shopify Breach and Extortion

Cyber Updates - Asher Tamam reports that Seiko USA's website experienced a defacement on its 'Press Lounge' page, which displayed an extortion message. The attackers...

israeldata-breach

Apr 21, 2026 08:41 /SCW Threat Desk /MEDIUM

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

Alleged EL AL Passenger Data Sale: Low Price Raises Red Flags

Cyber Updates - Asher Tamam reports an attacker is offering 6.6 million alleged EL AL passenger records for sale on the dark web. The purported...

israeldata-breach

Apr 21, 2026 07:37 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Ukraine Busts Bot Farm Fueling Russian Disinformation

Ukrainian authorities have dismantled a significant 'bot farm' operation. The Record by Recorded Future reports that this network was allegedly supplying thousands of fake social...

threat-inteldata-breachgovernment

Apr 21, 2026 02:00 /SCW Research /MEDIUM

Vercel Breach: Stolen OAuth Tokens — New Lateral Movement Vector

A recent data breach at Vercel stemmed from an employee's access to an AI tool, ultimately leading to the compromise of OAuth tokens. Dark Reading...

threat-inteltoolsdata-breachidentity

Apr 21, 2026 00:01 /SCW Research /HIGH /⚙ 3 Sigma

Gentlemen Ransomware Leverages SystemBC Botnet for Attacks

BleepingComputer reports that the Gentlemen ransomware gang is now integrating SystemBC proxy malware into its attack chain. An investigation into a Gentlemen ransomware incident uncovered...

threat-inteldata-breachmalwareransomwarebleepingcomputer

Apr 20, 2026 23:02 /SCW Research /MEDIUM

Featured

Daily Security Digest — 2026-04-20

13 vulnerability disclosures (13 High) and 4 curated intelligence stories from 3 sources.

daily-digestvulnerabilityCVEhigh-severityserver-side-request-forgerycwe-918cwe-306cwe-862command-injectioncwe-78

Apr 20, 2026 23:00 /SCW Daily Digest /HIGH

Italian Postal Service Slapped with $15M Fine for Data Privacy Violations

Italy's data protection authority has levied significant fines against Poste Italiane SpA and its digital payments arm, Postepay SpA, totaling €12.5 million (approximately $15 million...

threat-inteldata-breachgovernment

Apr 20, 2026 19:51 /SCW Research /MEDIUM /⚙ 3 Sigma

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

Lovable Exposes Sensitive User Data Due to Unpatched Vulnerability

Following the Vercel incident, a concerning thread on X (formerly Twitter) highlights that sensitive user information from Lovable is exposed. According to the information posted,...

israel

Apr 20, 2026 19:50 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

North Korea Linked to $290 Million Crypto Heist

The Record by Recorded Future reports that hackers linked to North Korea are suspected of stealing nearly $300 million in cryptocurrency. This incident highlights the...

threat-inteldata-breachgovernment

Apr 20, 2026 19:45 /SCW Research /MEDIUM

Musk Skips French Police Interview on X's AI Image Scandal

Elon Musk, owner of X (formerly Twitter), and CEO Linda Yaccarino have reportedly missed voluntary interviews with French police. The interviews, scheduled for April 20...

threat-inteldata-breachgovernment

Apr 20, 2026 17:56 /SCW Research /MEDIUM

French Identity Agency Hit by Cyberattack, Personal Data Exposed

A cyberattack has compromised a French government website responsible for managing identity documents and driver's licenses. The Interior Ministry confirmed the breach, indicating that personal...

threat-inteldata-breachgovernmentidentity

Apr 20, 2026 17:15 /SCW Research /MEDIUM /⚙ 3 Sigma

Bluesky Hit by 'Sophisticated' DDoS Attack

The decentralized social network Bluesky experienced intermittent outages starting April 15, which The Record by Recorded Future attributed to a "sophisticated" Distributed Denial of Service...

threat-inteldata-breachgovernmentmicrosoft

Apr 20, 2026 16:57 /SCW Research /MEDIUM

India Cracks Down on SIM Card Fraudsters Fueling Cybercrime

India's Central Bureau of Investigation (CBI) has arrested a key figure in a network supplying fraudulent SIM cards to cybercriminals. This arrest, part of 'Operation...

threat-inteldata-breachransomwaremicrosoftidentityphishingtools

Apr 20, 2026 15:00 /SCW Research /HIGH /⚙ 3 Sigma

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

Scattered Spider Affiliate Pleads Guilty to $8M Crypto Heist

A British hacker has pleaded guilty in U.S. federal court for his role in a sophisticated cybercrime campaign linked to the notorious Scattered Spider group....

threat-inteldata-breachgovernment

Apr 20, 2026 15:00 /SCW Research /MEDIUM

Enable MFA for all users

If I had a nickel for every breach that started with a single compromised password, I'd have retired years ago. It's the oldest trick in...

lockdown-labhardeningazureidentity

Apr 20, 2026 12:10 /Shimi Cohen

Enable MFA on root account

Let's talk about the keys to the kingdom. Your AWS root account is exactly that – unrestricted access to everything, including billing. I've seen organizations...

lockdown-labhardeningawsidentity

Apr 20, 2026 11:50 /Shimi Cohen

Fraud Campaign Impersonates Major Israeli Brands

A sophisticated fraud campaign is actively impersonating well-known Israeli brands, including Shufersal and Cafe Greg. Cyber News - Erez Dasa reports that this campaign is...

israel

Apr 20, 2026 11:38 /SCW Threat Desk /MEDIUM /⚙ 4 Sigma

Microsoft's Emergency Patch: Fixing Broken Windows Server Updates

Microsoft has issued out-of-band updates to address critical issues introduced by their April 2026 security patches for Windows Server. BleepingComputer reports these initial updates caused...

threat-inteldata-breachmalwaremicrosofttools

Apr 20, 2026 11:30 /SCW Research /MEDIUM /⚙ 3 Sigma

Rename and disable built-in Administrator

If you’re still running default Administrator accounts on your Windows Servers, you’re practically handing attackers a key. This isn't theoretical; tools like Mimikatz and CrackMapExec...

lockdown-labhardeningwindowsidentity

Apr 20, 2026 10:53 /Shimi Cohen

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

North Korea's KalepDao Heist: A Masterclass in Multi-Vector Attack

Cyber News - Erez Dasa highlights the sophisticated multi-vector attack that led to the theft of hundreds of millions of dollars from the KalepDao project,...

israel

Apr 20, 2026 09:25 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Israeli Domain Registrar Galcomm Data Allegedly Leaked

An attacker has reportedly published data allegedly belonging to Galcomm, a prominent Israeli domain registrar. Cyber News - Erez Dasa reports that this information appears...

israel

Apr 20, 2026 09:08 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Featured

Daily Security Digest — 2026-04-19

5 vulnerability disclosures (5 High) and 5 curated intelligence stories from 4 sources.

daily-digestvulnerabilityCVEhigh-severitybuffer-overflowcwe-119cwe-120sql-injectioncwe-74cwe-89

Apr 19, 2026 23:00 /SCW Daily Digest /HIGH

Bluetooth Tracker in Greeting Card Exposes Dutch Warship Location

Cyber Updates - Asher Tamam reports on a significant operational security blunder within the Dutch Navy. Journalist Joost Verwaart uncovered that a seemingly innocent greeting...

israeldata-breach

Apr 19, 2026 22:48 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Restrict who can create and publish Copilot Studio agents

Shadow IT is bad enough. Add generative AI, and you’ve got a recipe for serious data exfiltration. I’ve seen organizations completely miss this control. Any...

lockdown-labhardeningcopilot-studioservices

Apr 19, 2026 21:41 /Shimi Cohen

Vercel Confirms Breach, Stolen Data for Sale

Cloud development platform Vercel has confirmed a security incident following claims by threat actors attempting to sell stolen data. BleepingComputer reports that the breach was...

threat-inteldata-breachmalwarecloud

Apr 19, 2026 20:32 /SCW Research /HIGH /⚙ 3 Sigma

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

Vercel Breach: ShinyHunters Claims Internal System Access, Data Theft

Vercel has confirmed a cybersecurity incident where attackers gained access to internal systems. Cyber News - Erez Dasa reports that the ShinyHunters group has taken...

israel

Apr 19, 2026 19:53 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Shufersal Phishing Scam Targets Israeli Consumers

Cyber News - Erez Dasa reports a new phishing campaign impersonating Shufersal, a major Israeli supermarket chain. The scam lures victims with the promise of...

israel

Apr 19, 2026 17:16 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Ransomware Activity Surges: CoinBase Cartel Dominates Latest Attacks

DARKFEED reports a significant spike in ransomware and breach activity over the last 24 hours, with seven distinct incidents identified. The United States remains a...

darkwebthreat-intelransomwaremalwaredata-breachdarkfeed

Apr 19, 2026 12:49 /SCW Threat Desk /MEDIUM

MKBHD's Locked iPhone Hacked: $10,000 Fraud Exposes Physical Security Flaw

Cyber News - Erez Dasa reports on a significant incident where tech influencer MKBHD's locked iPhone was compromised, leading to a $10,000 fraudulent charge. This...

israel

Apr 19, 2026 09:21 /SCW Threat Desk /MEDIUM

KelpDAO Suffers $280M Crypto Heist

The KelpDAO crypto project has reported malicious activity targeting its protocol network. According to Cyber News - Erez Dasa, this incident resulted in a significant...

israel

Apr 19, 2026 08:07 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Critical RCE in protobuf.js Demands Immediate Patching

Cyber Updates - Asher Tamam reports a critical Remote Code Execution (RCE) vulnerability in `protobuf.js`, stemming from insecure dynamic function creation within schemas. This flaw,...

israel

Apr 19, 2026 07:00 /SCW Threat Desk /MEDIUM

🛡️

SCW Elite

Want early alerts?

Get exclusive analysis, detection rules, and IOC feeds

Get Protected →

Unmanaged Identities Fuel Cloud Breaches; DDoS Services Dismantled

Cyber Updates - Asher Tamam reports a significant international operation, "PowerOFF," has dismantled DDoS-for-hire infrastructures across more than 20 countries. This operation seized dozens of...

israelcloud

Apr 18, 2026 21:21 /SCW Threat Desk /MEDIUM /⚙ 3 Sigma

Iranian Cyber Risk Escalates: Phishing, Hacktivism, and Cybercrime Surging

Palo Alto Unit 42 reports a significant escalation in Iranian cyberattack activity, observing a clear uptick in phishing campaigns, hacktivist operations, and cybercrime. This isn't...

threat-intelAPTmalwareresearchphishingunit-42

Apr 18, 2026 01:35 /SCW Research /MEDIUM

Payouts King Ransomware Hides in QEMU VMs to Evade Detection

BleepingComputer reports that the Payouts King ransomware operation is employing a novel evasion technique: using QEMU emulators to run virtual machines discreetly on compromised systems....

threat-inteldata-breachmalwareransomwarebleepingcomputer

Apr 17, 2026 22:10 /SCW Research /MEDIUM

NHS Ransomware Fallout Lingers 18 Months On

More than 18 months after a ransomware attack crippled systems at hospitals in South East London, the disruption continues. The Record by Recorded Future reports...

threat-inteldata-breachgovernmentmalwareransomware

Apr 17, 2026 21:45 /SCW Research /MEDIUM /⚙ 2 Sigma

Global DDoS-for-Hire Takedown Nabs Four, Disrupts 'PowerOFF' Operations

Law enforcement agencies across more than 20 countries executed a coordinated takedown of DDoS-for-hire platforms, leading to four arrests. This operation, dubbed 'PowerOFF,' targeted services...

threat-inteldata-breachgovernment

Apr 17, 2026 21:30 /SCW Research /MEDIUM

House Extends FISA Surveillance Powers Amidst Political Stalemate

The U.S. House of Representatives has passed a short-term extension for a controversial warrantless government surveillance program. This 10-day stopgap measure comes after a significant...

threat-inteldata-breachgovernment

Apr 17, 2026 16:15 /SCW Research /MEDIUM

🛡️

Our Pick

Protect your privacy

Fast, secure VPN with built-in threat protection. 40% off.

Get Protected →

ZionSiphon Malware Targets Israeli Water Systems

Cyber News - Erez Dasa reports on ZionSiphon, a new malware variant specifically targeting industrial control systems (ICS) within Israel's water infrastructure. Detailed technical analysis...

israel

Apr 17, 2026 14:00 /SCW Threat Desk /MEDIUM

PowerOFF Targets DDoS Operators: 53 Domains Seized, Arrests Made

Law enforcement agencies globally, spearheaded by Europol, continue Operation PowerOFF, a sustained offensive against DDoS attack infrastructure. Cyber News - Erez Dasa reports that the...

israel

Apr 17, 2026 13:56 /SCW Threat Desk /MEDIUM

OpenAI's GPT-5.4-Cyber: AI Offensive, Defensive Dual-Use Dilemma Intensifies

OpenAI has dropped GPT-5.4-Cyber, a specialized variant of its latest model, tailored for defensive cybersecurity missions. This move comes hot on the heels of Anthropic's...

israelai-security

Apr 17, 2026 09:38 /SCW Threat Desk /MEDIUM

Amtrak Data Breach: 2M Accounts Exposed by ShinyHunters

The threat actor group ShinyHunters has claimed responsibility for breaching Amtrak, a major US passenger railroad service. Have I Been Pwned reports that over 2.1...

data-breachransomware

Apr 17, 2026 07:54 /SCW Research /HIGH /⚙ 2 Sigma

Featured

Project Glasswing Is Not Just Another AI Security Announcement

Anthropic's Project Glasswing brings together AWS, Microsoft, Google, CrowdStrike, Palo Alto Networks and others to secure critical software using Claude Mythos Preview — a frontier...

communityscw-originalresearchvulnerability

Apr 17, 2026 00:06 /Shimi Cohen /MEDIUM

VAU

Vault Update — 46 New Resources Added

46 new resources just landed in the Vault.

vault-updateresources

Apr 17, 2026 00:00

🛡️

Recommended

Swiss-grade privacy

No-logs VPN with Secure Core routing and built-in malware filter

Get Protected →

Featured

GodPotato Exploit Now Operational with Cobalt Strike BOF

**Editor's Note — Shimi Cohen:** GodPotato proved the concept. Offensive tooling keeps turning it into operational reality.. I'm seeing a fresh Cobalt Strike Beacon Object...

communityscw-originaltoolsgithub

Apr 16, 2026 21:37 /Shimi Cohen /MEDIUM

Crypto Wild West: Millions Vanish in Daily Exploits

The crypto landscape remains a high-stakes environment where significant sums disappear with alarming regularity. While major incidents, like the reported $280 million loss from the...

israel

Apr 16, 2026 20:35 /MEDIUM

NJ Men Sentenced for North Korean Laptop Farms

The U.S. Department of Justice (DOJ) has handed down significant sentences to two New Jersey men, Kejia Wang, 42, and Zhenxing Wang, 39, for their...

threat-inteldata-breachgovernment

Apr 16, 2026 19:38 /MEDIUM

Hackers Pilfering Cargo via Sophisticated Digital Campaigns

Digital attacks are increasingly fueling a surge in cargo theft, with losses in North America projected to hit a staggering $6.6 billion by 2025, according...

threat-inteldata-breachgovernment

Apr 16, 2026 16:16 /MEDIUM

New AgingFly Malware Hits Ukrainian Emergency Services and Hospitals

A fresh espionage campaign is reportedly underway, specifically targeting Ukrainian emergency services and local government bodies. According to The Record by Recorded Future, the attackers...

threat-inteldata-breachgovernmentmalwaretools

Apr 16, 2026 15:00 /MEDIUM

McGraw Hill Breach: 13.5 Million Accounts Leaked by ShinyHunters

The edtech behemoth McGraw Hill has been hit with a significant data breach, with the ShinyHunters extortion group claiming responsibility for leaking data from 13.5...

threat-inteldata-breachmalware

Apr 16, 2026 13:35 /HIGH /⚙ 2 Sigma

🛡️

Great Value

Secure all your devices

VPN + ad blocker + malware protection. Unlimited devices.

Get Protected →

Big Tech Fails to Honor User Opt-Out Requests

A new audit from the privacy organization webXray has revealed a concerning trend: a significant number of online advertising services are outright ignoring user requests...

threat-inteldata-breachgovernment

Apr 16, 2026 03:44 /MEDIUM

WordPress EssentialPlugin Suite Compromised, Thousands of Sites at Risk

A widespread compromise has hit the EssentialPlugin package for WordPress, injecting malicious code into over 30 of its plugins. BleepingComputer reports that this breach grants...

threat-inteldata-breachmalware

Apr 15, 2026 23:33 /MEDIUM /⚙ 2 Sigma

Featured

Daily Security Digest — 2026-04-15

14 vulnerability disclosures (4 Critical, 10 High) and 1 curated intelligence stories from 1 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitydenial-of-servicecwe-77cwe-22cwe-295sql-injection

Apr 15, 2026 23:00 /CRITICAL

Phishing Campaign Impersonates Israeli Fines Collection Center

A persistent phishing campaign continues to target individuals, impersonating the Enforcement and Collection Authority's Fines Collection Center in Israel. According to Cyber News - Erez...

israel

Apr 15, 2026 11:21 /MEDIUM

Old Accounts, New Dangers: The Unseen Attack Vector

A critical question often gets overlooked in the daily grind of cybersecurity: how quickly would your organization detect an intrusion via an old, unmonitored user...

israelcybersafe

Apr 15, 2026 10:08 /MEDIUM

Avatar Aang Leaked: Nickelodeon Breach Rumors Swirl

The highly anticipated *Avatar Aang: The Last Airbender* movie, initially slated for an October release, has reportedly leaked online, prompting parent company Paramount to scramble...

israel

Apr 15, 2026 09:24 /MEDIUM /⚙ 2 Sigma

🛡️

Our Pick

Encrypted password vault

Open-source passwords with built-in 2FA and email aliases

Get Protected →

JanaWare Ransomware: Turkish Citizens in the Crosshairs

The cybercriminal landscape is a constantly shifting beast, and new ransomware strains are always emerging. According to The Record by Recorded Future, a new player...

threat-inteldata-breachgovernmentmalwareransomwareidentity

Apr 14, 2026 22:35 /MEDIUM

Windows 11 Gets Security Boost with Latest Cumulative Updates

Microsoft has rolled out new cumulative updates for Windows 11, namely KB5083769 and KB5082052. BleepingComputer reports these patches target Windows 11 versions 23H2 and 25H2/24H2,...

threat-inteldata-breachmalwaremicrosofttools

Apr 14, 2026 20:46 /MEDIUM /⚙ 1 Sigma

Virginia Bans Sale of Precise Geolocation Data

Virginia has officially enacted a ban on the sale of precise geolocation data, a significant move that could signal a broader trend against the unfettered...

threat-inteldata-breachgovernment

Apr 14, 2026 19:51 /MEDIUM

Microsoft Fast-Tracks Windows Hardware Dev Account Reinstatements

Following a wave of complaints from developers locked out of their Windows Hardware Program accounts without warning, Microsoft has introduced a streamlined process to help...

threat-inteldata-breachmalwaremicrosoft

Apr 14, 2026 18:53 /MEDIUM

Zero Trust: The Identity Fortress Against Stolen Credentials

Stolen credentials continue to be a primary pathway for cyber attackers, often paving the way for dangerous privilege escalation. BleepingComputer highlights how an identity-first approach...

threat-inteldata-breachmalwareidentity

Apr 14, 2026 17:02 /MEDIUM

Russia Censors Bluesky Amid Broader Internet Crackdown

Russia's digital landscape continues to shrink, with the social media platform Bluesky now reportedly added to the country's registry of banned websites. This move, reported...

threat-inteldata-breachgovernment

Apr 14, 2026 16:51 /MEDIUM

🛡️

Our Pick

Level up your cyber skills

Real-world hacking labs and enterprise training. 10-20% off.

Get Protected →

Mirax Android RAT: Meta Ads Push SOCKS5 Proxy Malware

A new Android remote access trojan, dubbed Mirax, is actively making the rounds, primarily targeting Spanish-speaking regions. According to The Hacker News, this campaign has...

malwarethreat-intel

Apr 14, 2026 13:20 /HIGH

Critical Risk Surges 400% Amidst AI-Driven Development

A recent analysis of 216 million security findings across 250 organizations over a 90-day period reveals a stark acceleration in critical risk. According to The...

Apr 14, 2026 13:00 /MEDIUM

Australia's Social Media Ban: A Flawed Gamble?

Australia's recent social media ban, intended to restrict access for children under 16, is already facing significant questions regarding its effectiveness. New research from the...

cloud

Apr 14, 2026 10:42 /HIGH

Booking.com Suffers Embarrassing Data Leak

Booking.com has confirmed an unauthorized party accessed customer reservation information, according to LΣҒΔ𝕽ΩLL 🇮🇱. The breach exposed sensitive details for some customers, including names, email...

Apr 14, 2026 09:40 /MEDIUM /⚙ 2 Sigma

Basic-Fit Breach Exposes 1 Million Members

European fitness giant Basic-Fit recently disclosed a significant data breach, impacting approximately one million of its members. According to BleepingComputer, the incident involved unauthorized access...

data-breach

Apr 14, 2026 00:50 /HIGH /⚙ 2 Sigma

AI: The New Cyber Weapon for the Masses

The cybersecurity community is grappling with the rapid evolution of AI, specifically models like Claude Mythos, which are fundamentally shifting the threat landscape. A joint...

vulnerabilitycloudmicrosoftidentityai-securitythreat-intel

Apr 14, 2026 00:43 /HIGH

🛡️

Our Pick

Learn cybersecurity hands-on

Guided paths from beginner to advanced. Start free with TryHackMe.

Get Protected →

New Threat Actor 'Lamashtu' Emerges on the Cyber Scene

Cybersecurity intelligence channel DARKFEED has flagged the emergence of a new threat actor dubbed 'Lamashtu'. Details are scarce, but the identification of a new player...

darkwebthreat-intelransomware

Apr 13, 2026 22:57 /MEDIUM

High-Value E-commerce Source Code and Database Advertised

DARKFEED has identified a new listing on the dark web advertising the sale of high-value e-commerce source code and its associated database. This isn't just...

darkwebthreat-intelransomwaredata-breach

Apr 13, 2026 22:57 /HIGH

FBI Nabs W3LL Phishing Dev, Dismantles Infrastructure

The FBI Atlanta Field Office, in a coordinated effort with Indonesian authorities, has successfully dismantled the W3LL global phishing platform and arrested its alleged developer....

threat-intelphishing

Apr 13, 2026 21:59 /MEDIUM

CISA Adds Seven New KEVs to Catalog, Mandates Federal Action

The Cybersecurity and Infrastructure Security Agency (CISA) recently updated its Known Exploited Vulnerabilities (KEV) Catalog, adding seven new entries. This move underscores the agency's ongoing...

threat-intelvulnerability

Apr 13, 2026 21:39 /MEDIUM /⚙ 1 Sigma

New GitHub Project 'WeClone' Builds Digital Twins from Chats

A new open-source project on GitHub, dubbed WeClone, is gaining traction among developers. According to LΣҒΔ𝕽ΩLL 🇮🇱, this tool aims to create a 'digital twin'...

microsofttools

Apr 13, 2026 21:00 /MEDIUM

OpenAI Rotates macOS Certs After Supply Chain Attack on Axios Package

OpenAI is taking a proactive stance, rotating its macOS code-signing certificates following a supply chain attack. According to Cyber Threat Intelligence, a malicious version of...