A newly identified ransomware strain called Sicarii has raised serious concern in the cybersecurity world. Security researchers have confirmed that files encrypted by this ransomware cannot be decrypted, even if victims pay the ransom. This makes Sicarii different from many traditional ransomware attacks. Once the damage is done, the data is effectively locked forever. Ransomware … Continued
Nike is investigating a potential cybersecurity incident after a ransomware group known as World Leaks claimed it leaked a large volume of the company’s internal data. The group alleges that around 1.4 terabytes of Nike data has been published online. Nike has acknowledged the situation and confirmed that it is actively reviewing the claim. However, … Continued
Microsoft has released an emergency security update to fix a serious zero-day vulnerability in Microsoft Office that was already being exploited by attackers. The flaw, tracked as CVE-2026-21509, was considered dangerous enough to require an out-of-band patch, released outside Microsoft’s regular monthly update cycle. The company confirmed that real-world attacks were observed before the fix … Continued
Cybersecurity experts say cyber attacks are becoming more advanced because attackers are now using artificial intelligence. AI allows hackers to create phishing emails, malicious scripts, and attack methods faster and at a much larger scale. These AI-driven attacks can quickly change their behaviour, making them difficult to detect. This shift has created serious challenges for … Continued
A North Korea–linked hacking group known as Konni has been identified in a new cyber-espionage campaign targeting blockchain and cryptocurrency developers. Security researchers confirmed that the group is using an advanced PowerShell backdoor that appears to be generated with the help of artificial intelligence. The campaign mainly focuses on developers working on crypto platforms and … Continued
Microsoft has warned organizations about a sophisticated cyberattack campaign aimed at companies in the energy sector. The attacks combine advanced phishing methods with business email compromise techniques. According to Microsoft’s security researchers, the goal is to steal credentials and gain long-term access to corporate email accounts. The findings highlight growing cyber risks for critical infrastructure. … Continued
The Australian government has started a fresh review of Chinese-made electric buses after overseas reports raised cybersecurity concerns. The issue came into focus after European transport authorities warned that some electric buses could potentially be controlled or shut down remotely. These findings have pushed Australian officials to re-examine similar buses used locally. Authorities say the … Continued
Security researchers have identified a malicious Python package uploaded to PyPI that impersonates the popular SymPy mathematics library. The package was created to deceive developers into believing it is legitimate. Once installed, it silently executes malicious code on Linux systems. The attack mainly targets developer machines and automated environments. The malicious package uses a name … Continued
Security experts have identified a series of automated cyberattacks targeting Fortinet firewall devices through weaknesses in FortiCloud Single Sign-On (SSO). These attacks allow unauthorized access to firewalls without using valid usernames or passwords. Once access is gained, attackers can change critical firewall settings. The activity is confirmed to be happening in real-world environments. The attacks … Continued
Security researchers have recently identified serious security flaws in the Chainlit AI framework, a tool widely used to build AI-powered chatbots and interactive applications. These flaws could allow attackers to steal sensitive data from servers running vulnerable versions. The findings have drawn attention from the cybersecurity community due to the nature of data handled by … Continued
