Author: nitya

The source code of the Miasma worm, a credential-stealing malware framework linked to recent supply-chain attacks, was briefly exposed on GitHub before being removed. Security researchers reported that the publication appeared intentional and closely resembled an earlier leak involving the Shai-Hulud worm. The incident immediately attracted attention across the cybersecurity community because of Miasma’s growing … Continued

A major cybersecurity incident has affected the University of Nottingham after hackers gained access to a large amount of student and alumni data. The breach involved the university’s Campus Solutions student records platform, which is used to manage academic and administrative information. Reports indicate that more than 450,000 current and former students may have been … Continued

Many organizations today rely on automated penetration-testing tools to evaluate their cybersecurity defenses. These tools can quickly scan systems, identify known vulnerabilities, and generate reports that appear reassuring. However, security experts behind a recent webinar warn that a clean automated pentest report does not always mean an organization is truly secure. Automated tools can only … Continued

Anthropic has officially introduced Claude Fable 5, describing it as the most powerful AI model the company has ever made available to the public. The new model belongs to Anthropic’s newly created “Mythos” class of AI systems, which are designed to handle more complex tasks, deeper reasoning, advanced coding work, and long-duration problem solving than … Continued

WhatsApp has revealed that it recently disrupted a new wave of spearphishing attempts linked to the Israeli spyware company NSO Group. The discovery comes despite a permanent U.S. court injunction that previously barred NSO from targeting WhatsApp and its users. Meta, WhatsApp’s parent company, said the latest activity suggests that efforts connected to the spyware … Continued

A serious security flaw in LiteLLM, tracked as CVE-2026-42271, is now being actively exploited by attackers. The vulnerability was recently added to the U.S. Cybersecurity and Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities catalog after confirmed reports of real-world attacks. Security researchers warn that organizations using vulnerable LiteLLM deployments could face significant risks if the … Continued

Cybersecurity researchers have uncovered a large-scale data theft and extortion campaign carried out by a threat group known as UNC3753. The group, also tracked as Luna Moth, Chatty Spider, and Silent Ransom Group, targeted organizations in the legal, financial, and professional services sectors across the United States between January and May 2026. According to findings … Continued

More than 20,000 Instagram accounts were reportedly taken over after hackers found a way to misuse Meta’s AI-powered support system. According to reports, the attackers exploited a flaw in an account recovery tool that was designed to help users regain access to their accounts. Meta has confirmed that around 20,000 accounts may have been affected … Continued

Cybersecurity researchers have uncovered a large-scale cloud-based operation linked to a threat actor known as PCPJack. According to new findings, the group compromised 230 cloud servers hosted on Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure. The attackers quietly converted these servers into a hidden SMTP relay network that could be used … Continued