What's Hot
Browsing: Cyber Incidents
Microsoft has issued a warning about an ongoing large-scale phishing campaign that is compromising hundreds of organizations every day. The campaign uses advanced automation and artificial intelligence to target corporate email accounts, particularly those running on Microsoft 365. According to Microsoft’s security research team, the activity has been active since mid-March 2026 and continues to evolve, with attackers launching multiple campaigns daily. The scale and sophistication of the operation have raised concerns across the cybersecurity community. Daily Campaigns Targeting Organizations Globally Security researchers report that between 10 and 15 phishing campaigns are being launched every 24 hours, each targeting hundreds…
Cybersecurity agencies in the United Kingdom have issued a warning over an ongoing campaign linked to Russian state-aligned threat actors targeting internet routers. The activity is believed to be part of a broader espionage effort aimed at gaining persistent access to networks used by both individuals and organizations. Officials have described the campaign as a significant risk, particularly because routers serve as the primary gateway to internet-connected systems, making them a valuable entry point for attackers. Targeting Network Infrastructure The campaign focuses on compromising internet routers, including devices used in homes, small businesses, and enterprise environments. By gaining control of…
Artificial intelligence company Anthropic has introduced a new AI model, Claude Mythos Preview, while deliberately restricting its public release due to concerns over its cybersecurity capabilities. The company has positioned the model as both a powerful tool for identifying software vulnerabilities and a potential indicator of evolving cyber risks. The announcement reflects a growing tension within the AI industry between rapid technological advancement and the need to manage emerging security risks. Restricted Access and Industry Collaboration Rather than releasing the model broadly, Anthropic has opted to provide access through a controlled industry initiative known as Project Glasswing. The program includes…
Iran sustained cyber campaign is emerging as a major global cybersecurity concern, as a new report from the Center for Strategic and International Studies (CSIS) highlights a clear shift in Iran’s cyber strategy. The analysis indicates that Iran is no longer relying on isolated or short-term cyberattacks, but is instead adopting a sustained and structured approach targeting critical infrastructure sectors. This development reflects a broader transformation in cyber warfare, where nation-states increasingly use digital operations as a strategic tool alongside traditional military capabilities. Iran Sustained Cyber Campaign Explained The CSIS report explains that Iran sustained cyber campaign is focused on…
Hyderabad: In a significant cyber fraud incident, a software engineer from Kondapur, Hyderabad, has reportedly lost ₹2.36 crore after falling victim to a sophisticated fake trading app scam in Hyderabad. The case highlights the growing use of social engineering tactics, where cybercriminals manipulate trust and human behavior rather than relying solely on technical vulnerabilities. According to police officials, the fraud began in August 2025 when the victim received a friend request on Facebook from a profile identifying as “Kora.” The individual claimed to be a Singapore-based professional currently working in Mumbai. What started as a casual online interaction gradually evolved…
A critical cybersecurity vulnerability in Fortinet’s FortiClient Endpoint Management Server (EMS) is currently being exploited in real-world attacks, triggering global concern among security professionals. The flaw, tracked as CVE-2026-35616, carries a high severity score of 9.1 and allows attackers to bypass authentication mechanisms and execute unauthorized commands remotely. According to security observations, this vulnerability is not just theoretical—it is actively being weaponized by threat actors. Attackers are targeting exposed FortiClient EMS systems across multiple industries, with a particular focus on high-value sectors such as government networks, healthcare infrastructure, and cryptocurrency platforms. Vulnerability Breakdown The core issue lies in improper access…
A major cyber fraud operation involving the use of mule bank accounts and suspicious financial transactions worth nearly ₹60 crore has been uncovered in Uttar Pradesh’s Deoria district. Acting on intelligence inputs and digital transaction tracking, the cyber crime unit has arrested a key suspect believed to be operating a structured financial network linked to multiple online fraud cases across India. Officials say the case points to a well-organized system designed to move illegal money through layers of bank accounts, making it difficult to trace the origin of funds. Fake Business Front Used to Run Network During the investigation, authorities…
A major cybersecurity incident has shaken the cryptocurrency ecosystem after decentralized exchange Drift confirmed a loss of approximately $285 million in a highly sophisticated attack. The breach, which occurred on April 1, 2026, is now being investigated by multiple cybersecurity firms, with early indicators pointing toward involvement from North Korean-linked threat actors. This incident highlights a growing trend in cybercrime—where attackers are no longer relying solely on technical vulnerabilities but are increasingly exploiting human trust and operational processes. What Happened According to Drift, the attackers gained unauthorized access to its protocol through a complex social engineering campaign combined with technical…
Global toy and entertainment company Hasbro has confirmed that it recently experienced a cybersecurity incident that impacted parts of its internal systems. The company, known for brands like Monopoly, Transformers, and Nerf, is currently investigating the breach with the help of external cybersecurity experts. The incident reflects a broader trend of increasing cyberattacks targeting large corporations, especially those with complex digital infrastructure and global operations. Incident Overview According to initial reports, Hasbro identified unauthorized activity within its internal network. In response, the company took immediate action to secure its systems, including temporarily shutting down certain internal operations to prevent further…
A newly uncovered supply chain attack linked to suspected North Korean threat actors has raised serious concerns across the global cybersecurity community. According to findings from Google’s Threat Intelligence Group, attackers compromised a widely used open-source JavaScript library—Axios—potentially putting thousands of developers and systems at risk. The incident, detected in late March 2026, highlights the growing sophistication of supply chain attacks and the increasing focus of threat actors on open-source ecosystems that power modern software development. What Happened Security researchers identified that malicious actors introduced compromised versions of the popular Axios library into the software supply chain. Axios is widely…