Fortune 500 medical technology manufacturer Stryker has been hit by one of the most significant cyber attacks reported in the medtech sector in recent years. The hacking group Handala, believed to be linked to Iran, has claimed responsibility, asserting that it wiped data on hundreds of thousands of devices and stole tens of terabytes of … Read more
US and European law enforcement agencies, supported by private-sector cybersecurity experts, have dismantled the SocksEscort proxy botnet — one of the most persistent and commercially successful residential proxy services built on infected Linux-based routers running the AVRecon malware. The coordinated operation delivers a significant blow to the criminal market for “clean” residential IP addresses and … Read more
China’s National Computer Network Emergency Response Technical Team (CNCERT/CC) has published an official advisory warning that the OpenClaw agentic AI platform poses a “high security risk” in its default configuration. According to the bulletin, the way OpenClaw is typically deployed creates favorable conditions for large‑scale incidents, including credential theft and unauthorized access to critical corporate … Read more
A new attack technique against ZIP archives, dubbed Zombie ZIP, demonstrates how seemingly harmless file formats can be weaponised to deliver malware while slipping past antivirus and endpoint detection and response (EDR) tools. The method, presented by security researcher Chris Aziz from Bombadil Systems, exploits how many security solutions trust ZIP file headers instead of … Read more
A small startup from Mexico recently found itself facing an $82,314 Google Cloud bill after attackers abused a stolen Google Gemini API key for intensive AI queries over just two days. The incident highlights not only the risk of exposed API keys, but also architectural nuances in the Google Cloud and Gemini API ecosystem that … Read more
Microsoft’s March 2026 Patch Tuesday delivers more than 80 security fixes across Windows, Office and Azure services. The release includes two publicly disclosed 0‑day vulnerabilities and eight critical‑severity bugs, making this cycle particularly important for enterprise security and IT operations teams that manage large Windows and Microsoft 365 estates. Overview of March 2026 Microsoft security … Read more
International law-enforcement agencies, coordinated by Europol and technically supported by Microsoft, have dismantled the infrastructure of Tycoon2FA — one of the world’s most influential phishing‑as‑a‑service (PhaaS) platforms focused on bypassing multi‑factor authentication (MFA). During the operation, investigators disrupted the service and seized more than 330 domains, including operator control panels and phishing sites used in … Read more
Wireless tire pressure monitoring systems (TPMS), now mandatory in most new vehicles in the United States, European Union, and many other markets, have emerged as an unexpected tool for covert vehicle tracking. A team of researchers from Spain, Switzerland, and Luxembourg has demonstrated that cheap roadside radio receivers are sufficient to build a large-scale TPMS-based … Read more
A joint experiment by Anthropic and Mozilla has shown that large language models (LLMs) are already capable of identifying security flaws at industrial browser scale. In an automated security review of Firefox, the model Claude Opus 4.6 discovered 22 previously unknown vulnerabilities, many of them high severity. All issues have now been fixed in the … Read more
A newly documented phishing campaign analyzed by Infoblox demonstrates how attackers can weaponize the technical .arpa domain and reverse DNS for IPv6 to slip past email gateways and web filters. Instead of exploiting protocol-level vulnerabilities, the operators take advantage of gaps in DNS configuration policies and weaknesses in domain reputation checks. What is the .arpa … Read more
