Aggregator
CVE-2025-15570 | ckolivas lrzip up to 0.651 stream.c lzma_decompress_buf use after free (Issue 262)
Europol-led crackdown on The Com hackers leads to 30 arrests
LeakedData
You must login to view this content
LeakedData
You must login to view this content
LeakedData
You must login to view this content
Vshell Gains Traction Among Threat Actors as an Alternative to Cobalt Strike
A Go-based command-and-control (C2) framework originally marketed within Chinese-speaking offensive security communities has been quietly expanding its reach, drawing growing attention from threat actors seeking flexible and cost-effective alternatives to expensive commercial tools. Known as Vshell, the tool has evolved well beyond its early roots as a basic remote access tool (RAT) and now poses […]
The post Vshell Gains Traction Among Threat Actors as an Alternative to Cobalt Strike appeared first on Cyber Security News.
New Dohdoor Malware Attacking Schools and Health Care Sectors in U.S. via Multi-Stage Attack Chain
A newly discovered malware campaign has been quietly targeting educational institutions and healthcare organizations across the United States since at least December 2025. The threat, tracked under the actor designation “UAT-10027,” deploys a previously unknown backdoor called “Dohdoor,” which uses an advanced combination of stealth techniques and multi-stage delivery to gain persistent access into victim […]
The post New Dohdoor Malware Attacking Schools and Health Care Sectors in U.S. via Multi-Stage Attack Chain appeared first on Cyber Security News.
Ваш следующий смартфон будет дороже и хуже. Как ИИ спровоцировал мировой кризис
DoJ Seizes $61 Million in Tether Linked to Pig Butchering Crypto Scams
CVE-2026-26936 | Elastic Kibana up to 8.19.10/9.2.4 redos (WID-SEC-2026-0545)
CVE-2026-26938 | Elastic Kibana up to 9.3.0 Workflows special elements used in a template engine (WID-SEC-2026-0545)
CVE-2026-26937 | Elastic Kibana up to 8.19.10/9.2.4 Timelion resource consumption (WID-SEC-2026-0545)
CVE-2026-3061 | Google Chrome up to 145.0.7632.109 Media out-of-bounds (ID 482862 / Nessus ID 299807)
CVE-2026-26934 | Elastic Kibana up to 8.19.11/9.2.5/9.3.0 improper validation of specified quantity in input (WID-SEC-2026-0545)
CVE-2026-26935 | Elastic Kibana up to 8.19.11/9.2.5/9.3.0 Internal Content Connectors Search Endpoint denial of service (WID-SEC-2026-0545)
HHS Seeks Sector Input on AI for Fighting Healthcare Fraud
The U.S. Department of Health and Human Services will use "advanced" AI tools to more quickly detect Medicare and Medicaid fraud before scam claims are paid. As part of the "major crackdown" on healthcare fraud, HHS is also seeking public input on AI as regulators ponder potential rulemaking.
Breach Roundup: Finnish Hacker Sentenced to Nearly 7 Years
This week, Finland's Aleksanteri Kivimäki sentenced. ShinyHunters breaches. Laptop farm rancher sentenced. Oregon state agency hacker sentenced. African scammers arrested. MuddyWater AI-assisted hacks. Advantest ransomware incident, SolarWinds and Microsoft patches. FileZen flaw. QualDerm breach.
Hegseth's Anthropic Deadline Risks Severe Defense AI Gaps
Defense Secretary Pete Hegseth's ultimatum to Anthropic over expanded Claude access could trigger a months-long AI capability gap and disrupt the defense industrial base, as analysts warn that supply chain risk designations and compelled safeguards may destabilize national security AI strategy.
HHS Warns of Threats to Electronic Health Records
Healthcare entities should implement a "proactive preparedness" approach for protecting their electronic health record systems, which are an increasingly attractive target for cyberattacks and other breaches, federal authorities warn.