Nigerian authorities have arrested a suspect linked to a large phishing operation that targeted Microsoft 365 users worldwide. The arrest was carried out by the Nigeria Police Force National Cybercrime Centre (NPF–NCCC). The suspect is believed to be the developer behind a phishing toolkit known as RaccoonO365. This operation was used to steal login credentials … Continued
The FBI, working with U.S. prosecutors and international law enforcement agencies, has shut down an online cryptocurrency laundering service that played a key role in global cybercrime. The platform, known as E-Note, was used by criminals to move and hide illegal crypto funds. Authorities say the service helped cybercriminals convert stolen digital assets into usable … Continued
Hewlett Packard Enterprise (HPE) has released an urgent security warning about a critical flaw in its OneView management software. The vulnerability is rated at the highest severity level because of the serious risk it poses. HPE OneView is commonly used to manage servers and data-center infrastructure from a single platform. Due to its central role, … Continued
Cybersecurity researchers have uncovered a new Android malware campaign linked to Kimsuky, a hacking group associated with North Korea. In this operation, the attackers are spreading a malicious Android app called DocSwap by tricking users with fake delivery messages and QR codes. The campaign targets Android users by pretending to be legitimate courier or package-tracking … Continued
LKQ Corporation, a major US-based auto parts manufacturer and distributor, has confirmed a cybersecurity breach involving its Oracle E-Business Suite (EBS) system. The company stated that unauthorized access was detected in one of its enterprise applications. Oracle EBS is used to manage critical business operations. The incident has raised concerns about the security of enterprise … Continued
Security researchers have uncovered a new malware campaign called GhostPoster that targeted Firefox users through browser add-ons. The malware was found hidden inside 17 different Firefox extensions, which together had more than 50,000 downloads. These add-ons looked completely normal, making the attack hard to notice. Many users installed them without realizing the risk. The investigation … Continued
Amazon has revealed details of a long-running cyber espionage campaign linked to Russia’s military intelligence agency, the GRU. According to Amazon’s threat intelligence team, the campaign remained active for several years, roughly from 2021 to 2025. It mainly targeted energy companies, critical infrastructure operators, and cloud-based network systems across Western countries. The activity has been … Continued
Threat actors have begun actively exploiting two recently disclosed critical vulnerabilities affecting Fortinet FortiGate devices, just days after the flaws were made public. Cybersecurity firm Arctic Wolf reported observing live intrusion attempts on December 12, 2025, involving unauthorized single sign-on (SSO) access to FortiGate appliances. The attacks abuse two authentication bypass vulnerabilities tracked as CVE-2025-59718 … Continued
A new ransomware strain known as VolkLocker has been discovered with a major encryption flaw that allows victims to recover their files without paying a ransom, according to research by SentinelOne. VolkLocker is operated by the pro-Russian hacktivist group CyberVolk (also known as GLORIAMIST) and emerged in August 2025. The ransomware targets both Windows and … Continued
South Korea’s largest e-commerce company, Coupang, is facing a major crisis after one of the country’s biggest data breaches. The company confirmed that personal information of more than 33 million users was leaked. This incident has raised nationwide concern about digital safety. Public pressure increased quickly after the news became official. Coupang announced that its … Continued
