Hackers breached DHS after alarms were twice ruled ‘false positives’

Hackers managed to find their way into the US Department of Homeland Security’s primary information sharing platform, gaining unfettered access to the HSIN network that hosts unclassified information that multiple US agencies and international rely on. The hack allowed the Read More …

Attackers target critical FortiSandbox flaws as CISA issues patch order

Fortinet admins have two more reasons to clear their calendars after CISA confirmed a pair of critical FortiSandbox bugs are being actively exploited. The two bugs, tracked as CVE-2026-39808 and CVE-2026-25089, both carry CVSS scores of 9.1 and affect FortiSandbox, Read More …

Nichirei getting back online after cyberattack hit KFC supplies

Nichirei, the food distributor hit by a cyberattack that disrupted supplies to Kentucky Fried Chicken Japan and other outlets, said its systems are getting back online as it takes steps to remedy the disruption. The Tokyo-based provider of frozen food, ice and Read More …

GoSerpent: a persistent threat evolves with sophisticated data collection and exfiltration

In February 2026, Kaspersky discovered a set of malicious activities that had been ongoing since late 2025. These activities involved a RAT module written in Go with proxy capabilities, which served as the main stage of the attack. The attack Read More …

Coca-Cola suspended production at its Fairlife dairy after a ransomware attack

U.S. beverage maker Coca-Cola said one of its dairy subsidiaries was hacked and that it’s shutting down its operations for the foreseeable future. The multinational giant said in a disclosure with the U.S. Securities and Exchange Commission that its Fairlife dairy company Read More …

Tech support scam caused massive data breach at Australian airline Qantas

Australia’s Privacy Commissioner has revealed a tech support scam was the cause of the massive 2025 data breach at Australian airline Qantas and found the carrier didn’t breach its privacy obligations despite leaking personally identifiable information for 5.7 million customers. Read More …

Hackers who gained access to heart of London transport network jailed

The data of millions of commuters was stolen, Londoners were left out of pocket and 27,000 Transport for London staff were forced to reset their passwords. Over four days in 2024 a pair of teenage hackers had London’s transport network at their Read More …

This fake Apple app can unlock your Mac’s password vault

CrashStealer is a new macOS infostealer that masquerades as Apple’s CrashReporter component, uses an Apple‑notarized installer to slip past Gatekeeper, tricks users into handing over their password, and then systematically loots browsers, password managers, crypto wallets, and Keychain secrets before Read More …

New phishing campaign hits LastPass, Bitwarden users

Criminals have been found impersonating popular password managers LastPass and Bitwarden online in an attempt to trick users into sharing their login credentials, and thus access to a treasure trove of passwords and other secrets. LastPass recently issued a warning Read More …

Top AI tools such as OpenClaw and Github Copilot can be hijacked to create new massive botnets

Your favorite AI service could be subverted to deploy code that turns your phone or PC into a botnet, according to researchers at Intuit, Technion, and Tel Aviv University. The technique has been given the name HalluSquatting, a portmanteau of Read More …