News

Cybersecurity Dive
cybersecuritydive. com > news > fortibleed-campaign-traced-to-inc-and-lynx-ransomware-operations > 824348

Forti Bleed campaign traced to INC and Lynx ransomware operations

2+ hour, 27+ min ago  (368+ words) Researchers are also investigating the role of a suspected zero-day vulnerability. A massive credential-harvesting campaign, dubbed Forti Bleed, is linked to two ransomware-as-a-service operations, tracked as INC ransom and Lynx, according to a blog post Wednesday by cybersecurity firm SOCRadar....

Symbols: btc-usd,^n2250,eth-usd
Yahoo News
yahoo. com > news > us > articles > warning-signs-america-may-losing-150208578. html

The warning signs America may be losing the cyber war

3+ hour, 21+ min ago  (1739+ words) Every day, cybercriminals and state-backed hackers probe critical U. S. infrastructure, searching for weaknesses they can exploit. Most attacks never make national headlines, but together they paint a troubling picture of an increasingly contested digital landscape. In 2025, ransomware victims worldwide rose 46% to…...

Cyber Security News
cyberpress. org > steganographic-webshell-mimikatz-execution

Threat Actor Uses Steganographic Webshell and Defence Impairment Before Mimikatz Execution

8+ hour, 30+ min ago  (349+ words) In a recent incident beginning on June 7, attackers deployed a steganographic webshell after a likely Adobe Cold Fusion exploit. Before eventually deploying Mimikatz for credential dumping, the attackers executed an extensive array of evasion commands to blind security teams and…...

Symbols: cert-ua
@ukrinform
ukrinform. net > rubric-ato > 4140123-ukraines-general-staff-refutes-russian-false-claim-of-ukrainian-strike-on-minskanapa-passenger-bus. html

Ukraine's General Staff refutes Russian false claim of Ukrainian strike on Minsk-Anapa passenger bus

2+ hour, 44+ min ago  (234+ words) The false claim is aimed solely at diverting attention from Russia's terrorist missile and drone attack on Kyiv earlier on Wednesday, Andrii Kovalov, Spokesperson for the General Staff of the Armed Forces of Ukraine, told Ukrinform. "The Russian military and…...

Cyber Security News
cybersecuritynews. com > agentic-ransomware-jadepuffer-uses-base64-python-payloads > amp

Agentic Ransomware JADEPUFFER Uses Base64 Python Payloads to Harvest Cloud and API Keys

4+ hour, 42+ min ago  (721+ words) Ransomware has always needed a human at the keyboard or writing the script behind it. That assumption no longer holds. Researchers have documented what appears to be the first fully autonomous ransomware operation, driven entirely by an AI agent rather…...

Symbols: btc-usd,^n2250,eth-usd
The420. in
the420. in > indra-group-ransomware-attack-nato-contractor-data-leak

NATO Contractor Indra Group Hit by Ransomware, Hackers Threaten Data Leak in 9 Days

4+ hour, 23+ min ago  (709+ words) The420. in A ransomware group known as The Gentlemen has claimed responsibility for a cyberattack against Indra Group, listing the Spanish multinational and NATO contractor as a victim on its dark web leak site. The gang's post, published on June 30, states…...

Symbols: cert-in
gbhackers. com
gbhackers. com > jadepuffer-agentic-ransomware

JADEPUFFER Agentic Ransomware Uses LLM to Automate Database Extortion

10+ hour, 47+ min ago  (383+ words) The actor gained execution on an internet-facing Langflow instance via CVE-2025-3248, used the AI-host environment to harvest cloud and API credentials, and pivoted into a production My SQL/Nacos deployment to carry out a destructive, database-focused extortion playbook without a…...

Symbols: btc-usd,^n2250,eth-usd
gbhackers. com
gbhackers. com > phishing-campaign-uses-fake-invoice-pdf

Phishing Campaign Uses Fake Invoice PDF to Drop Async RAT, Venom RAT, and XWorm

6+ hour, 17+ min ago  (448+ words) A sophisticated phishing campaign that uses a fake invoice PDF to mask the delivery of multiple remote access trojans primarily Async RAT, but also Venom RAT and XWorm via layered shortcuts. Try Cloudflare quick tunnels, and disguised Python packages. The…...

Symbols: cert-ua
Streamline
streamlinefeed. co. ke > news > snow-shovelers-hack-corporate-network-exposing-major-access-flaws

Snow Shovelers Hack Corporate Network Exposing Major Access Flaws

11+ hour, 23+ min ago  (458+ words) Two professional cybersecurity testers bypassed a corporation's multi-million-dollar defense infrastructure simply by posing as helpful strangers shoveling snow, ultimately walking through an unsecured maintenance door to plant a rogue device and gain full network administrator access. Confronted in the mailroom…...

Symbols: btc-usd
Security Week
securityweek. com > fortibleed-campaign-linked-to-inc-lynx-ransomware-attacks

Forti Bleed Campaign Linked to INC, Lynx Ransomware Attacks

5+ hour, 34+ min ago  (670+ words) Researchers say credentials harvested from hundreds of thousands of Forti Gate firewalls are being used to facilitate ransomware attacks by the INC and Lynx operations. Forti Bleed, the large-scale credential-harvesting operation targeting organizations in 150 countries, has led to the deployment…...

Symbols: btc-usd,^n2250,eth-usd