News
JADEPUFFER Agentic Ransomware Uses LLM to Automate Database Extortion
6+ hour, 23+ min ago (383+ words) The actor gained execution on an internet-facing Langflow instance via CVE-2025-3248, used the AI-host environment to harvest cloud and API credentials, and pivoted into a production My SQL/Nacos deployment to carry out a destructive, database-focused extortion playbook without a…...
Cybercriminals Are Targeting the FIFA World Cup 2026
53+ min ago (1120+ words) Lead Analysts: Jeewan Singh Jalal and Louis Tiley Know Be4 Threat Labs tracked phishing campaign activity from the first week of April through June 22, 2026 " covering the pre-tournament build-up, tournament kickoff and the first twelve days of live match play. Our latest…...
Hackers Use Geofenced Webpages to Deliver Ousaban Banking Trojan in Spain and Portugal
3+ hour, 45+ min ago (546+ words) A targeted phishing campaign delivering the Ousaban banking Trojan to users in Spain and Portugal, notable for its use of geofenced webpages, layered evasion techniques, and a modular delivery chain. The threat actor repurposes a playbook seen previously in Brazil…...
Phishing Campaign Uses Fake Invoice PDF to Drop Async RAT, Venom RAT, and XWorm
1+ hour, 53+ min ago (448+ words) A sophisticated phishing campaign that uses a fake invoice PDF to mask the delivery of multiple remote access trojans primarily Async RAT, but also Venom RAT and XWorm via layered shortcuts. Try Cloudflare quick tunnels, and disguised Python packages. The…...
citizen-data-safe-nadra-denies-reports-of-system-breach
1+ hour, 51+ min ago (384+ words) In an official clarification, NADRA stated that the circulating posts are "false and unfounded," adding that the claims themselves acknowledge a lack of verification. The authority noted that similar allegations had surfaced in 2024 as well. On both occasions, NADRA said…...
Yorozu Data Breach Lawsuit Investigation
23+ min ago (173+ words) Shamis & Gentile P. A. , one of the nation's premier class action law firms specializing in data breach cases, is investigating the Yorozu Automotive Tennessee Inc data breach. Yorozu Automotive Tennessee Inc is a manufacturing subsidiary of Japan-based Yorozu Corp. The company specializes…...
Yorozu Automotive Data Breach Affects 20, 627 Individuals: PHI and PII Exposed
33+ min ago (233+ words) Yorozu Automotive Tennessee Inc. , a U. S. manufacturing subsidiary of Japan-based Yorozu Corporation, disclosed a data breach that has affected 20, 627 individuals in the United States, including 22 Indiana residents, eight Massachusetts residents and one Vermont resident. The incident took place on Oct. 9, 2024. The…...
Fake Marriage Racket Busted In Delhi, 3 Arrested: Police
27+ min ago (365+ words) Delhi Police has busted an alleged fake marriage racket that targeted unmarried men by posing married women as brides and cheating them of large sums of money, arresting three people in connection with the case, an official said on Thursday....
Family Health Centers Breach Affects 7k Individuals
38+ min ago (227+ words) Family Health Centers of Southern Indiana, a nonprofit organization that provides healthcare services to residents across Southern Indiana, disclosed a data breach that affected 7, 304 individuals in the United States, including 7, 037 Indiana residents. The breach took place on Jan. 15, 2026. At this…...
Medtronic Notifies Patients of Shiny Hunters Data Breach
1+ hour ago (624+ words) Medtronic began notifying affected individuals of a data breach involving certain corporate IT systems, according to Medtronic's updated statement on June 29, 2026. The extortion group Shiny Hunters has claimed responsibility for the attack, per Shiny Hunters' own leak-site post. Medtronic's own…...