11+ hour, 56+ min ago  (308+ words) Huntress has disclosed that it was among many organizations affected by a supply chain attack on Klue, a market intelligence platform. In a report published June 18, 2026, the cybersecurity firm detailed how a threat actor compromised Klue's backend and exfiltrated CRM…...

13+ hour, 53+ min ago  (270+ words) Bulgaria's government allowed the surveillance firm Circles to export powerful monitoring technology to repressive regimes between 2018 and 2023, according to a new Human Rights Watch report. The findings draw on export licensing records from the Bulgarian Ministry of Economy and Industry....

16+ hour, 36+ min ago  (501+ words) Lore Apostol is a cybersecurity news writer at Tech Nadu. With a university degree in journalism and advertising, she is keen on accuracy, conciseness, fact-checking, and staying current with cyber trends. Lore started as a cybersecurity creative proofreader at Tech…...

1+ day, 12+ hour ago  (296+ words) Six people, including a 15-year-old, are under suspicion of bank helpdesk fraud by impersonating bank employees via phone calls and in-person visits to the targets" houses. Dutch authorities arrested the suspects, aged between 15 and 30, after raiding a residence in Amsterdam…...

2+ day, 14+ hour ago  (271+ words) Kodak has confirmed that it is working with external cybersecurity experts to investigate a data breach after attackers gained access to some of the company's data. The Shiny Hunters extortion group has claimed responsibility for the incident on its dark…...

2+ day, 12+ hour ago  (291+ words) Fifteen malicious Jet Brains plugins posed as legitimate AI coding tools to steal developers' AI API keys. The plugins, distributed through the official Jet Brains Marketplace, target credentials tied to popular AI services while offering chat, commit messages, code review,…...

2+ day, 15+ hour ago  (267+ words) Threat actors deploying Dragon Force ransomware against a major U. S. services organization obfuscated command-and-control (C2) traffic within the Microsoft Teams relay infrastructure. The operation utilized a custom Go-based backdoor, identified by Symantec as Backdoor. Turn, the first documented malware exploiting Microsoft Teams…...

3+ day, 13+ hour ago  (352+ words) Evil Tokens is a phishing-as-a-service (Phaa S) kit built to compromise Microsoft 365 accounts by abusing the OAuth 2. 0 device authorization grant flow. Rather than harvesting passwords through fake login pages, the kit weaponizes a legitimate authentication process, making it a notable evolution…...

3+ day, 13+ hour ago  (504+ words) Question: In a study, Permiso Security discovered a vulnerability in Chat GPT's Markdown rendering that could allow content from third-party web pages to seep into Chat GPT responses. Where do filters need to be added to prevent phishing, tracking, and…...

4+ day, 3+ hour ago  (1620+ words) Question: For security professionals who have used Claude Fable 5, how do you see it being used in practical settings? Looking ahead, what additional capabilities or use cases could become possible? Sachin Jade, Chief Product Officer, Cyware: Anthropic has created a…...