Megalodon Supply Chain Attack Hits 5,500+ GitHub Repos; Critical Drupal Flaw Under Mass Exploit

DocketWise Data Breach Exposes Sensitive Personal, Financial, and Medical Data of 143,000 People

DocketWise, an immigration and legal case management platform, has disclosed a significant data breach impacting over 143,000 individuals. The incident was traced back to a threat actor using valid credentials to clone repositories belonging to a third-party p...

Lazarus Group Unleashes 'RemotePE' Memory-Only RAT in Attacks on Financial and Crypto Firms

The North Korean state-sponsored threat actor, Lazarus Group, is deploying a sophisticated new memory-only Remote Access Trojan (RAT) named 'RemotePE'. Delivered via a multi-stage infection chain that begins with social engineering, the malware targets financi...

NIST Drafts New Guidance for Ransomware Response and Recovery in Manufacturing Sector

The U.S. National Institute of Standards and Technology (NIST) has released a draft special publication, SP 1800-41, aimed at improving ransomware response and operational recovery for the manufacturing sector. The guidance provides a framework for securing op...

Taiwan Government Agencies Reported 726 Cybersecurity Incidents in Past Year

Taiwan's Administration for Cybersecurity has released its annual report, detailing 726 cybersecurity incidents affecting government agencies over the past year. Unauthorized intrusion was the most common incident type, accounting for nearly 70% of cases. The...

DragonForce Ransomware Claims Attack on HELIX INTERNATIONAL, Threatens Data Leak

The ransomware group DragonForce has claimed responsibility for a cyberattack on HELIX INTERNATIONAL, a U.S.-based software and managed services provider. The group has posted a notice on its dark web leak site, threatening to publish a 'full leak' of sensitiv...

Nightspire Ransomware Group Claims Attack on Italian Firm Pat**** S.r.l

The ransomware group Nightspire has claimed responsibility for a cyberattack against Pat**** S.r.l, an Italian company. While details are limited, the group has added the firm to its dark web leak site and implied that data has been exfiltrated, threatening to...

Anthropic's 'Mythos' AI Model Triggers Global Cybersecurity Overhaul

Update:Anthropic's Project Glasswing has reported significant progress, identifying over 10,000 high and critical severity vulnerabilities within its first month. The initiative, leveraging a specialized 'Claude Mythos preview' AI model, collaborates with major tech...

Europol IOCTA Report: AI, Encryption, and Data Theft are Fueling an Industrialized Cybercrime Wave

Update:International law enforcement, supported by Europol, has successfully dismantled 'First VPN', a bulletproof VPN service widely used by ransomware actors and fraudsters. The operation, led by French and Dutch authorities, resulted in the seizure of 33 servers a...

Ransomware Evolves in 2026: Attackers Adopt Post-Quantum Crypto and Encryptionless Extortion

Update:New reports confirm a strategic shift among ransomware groups towards 'pure extortion,' focusing solely on data theft and public leaks. This pivot is driven by a significant drop in ransom payment rates, from 76% in 2019 to just 28% today, as organizations imp...

Critical Unauthenticated SQLi Flaw in Drupal Core Hits PostgreSQL Sites

Update:The critical SQL injection vulnerability, CVE-2026-9082, in Drupal Core affecting PostgreSQL sites is now under active mass exploitation, just 48 hours after its patch release. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added this fla...

‘Megalodon’ Campaign Hits 5,500+ GitHub Repos in Automated CI/CD Supply Chain Attack

Update:New analysis explicitly attributes the 'Megalodon' supply chain attack to the threat actor TeamPCP. Beyond financial gain, the campaign is now understood to have a geopolitical dimension, with evidence of destructive wiper malware deployed against targets in I...