Iran linked threat actors are ramping up cyberattacks on internet connected IP cameras amid escalating Middle East tensions. Starting late February 2026, these coordinated efforts have hit devices in Israel, UAE, Qatar, Bahrain, Kuwait, Lebanon, and Cyprus. This isn’t random hacking it’s a tactical move blending cyber ops with real-world military actions, turning everyday surveillance…
A powerful set of hacking tools originally developed for government surveillance has leaked into cybercriminals’ hands, targeting vulnerable iPhones. Security experts warn this marks the rise of a “secondhand” exploit market, amplifying risks for everyday users. What is the Coruna Exploit Kit? The Coruna exploit kit, named by its developers, packs five full iOS exploit…
On March 2, 2026, US and Israeli airstrikes targeted major Iranian cities like Tehran, killing Supreme Leader Ali Khamenei and top officials. These attacks coincided with massive cyberattacks, including a hack on the popular BadeSaba prayer app and a near total internet blackout. The events followed failed US Iran talks amid deadly protests and prior…
A hacktivist group known as Department of Peace has claimed responsibility for infiltrating the U.S. Department of Homeland Security (DHS), leaking sensitive contract data tied to Immigration and Customs Enforcement (ICE). This bold move targets government partnerships with major tech and defense firms amid rising tensions over immigration policies. The incident, reported on March 2,…
A dangerous supply chain attack is targeting Malicious Go Crypto Module developers worldwide. Threat actors have released a fake Go module that impersonates the trusted golang.org/x/crypto library. This malicious package steals sensitive passwords and quietly installs a Linux backdoor called Rekoobe on infected systems. This incident highlights a growing threat: even popular, familiar dependencies can…
A critical vulnerability in the widely used jsPDF library exposes millions of web developers to PDF object injection attacks. Remote attackers can embed malicious objects into generated PDFs via unsanitized input. jsPDF powers PDF generation in JavaScript for over 36,000 live websites worldwide, making this flaw a massive concern for client side apps. Tracked as…
The Silver Fox threat group has ramped up its game, launching targeted malware attacks across Asia. These campaigns zero in on local organizations using hyper localized bait, like fake business emails that feel totally legit. The star of the show? Winos 4.0, aka ValleyRat a nasty piece of malware that slips into corporate networks undetected….
A hacker just dropped a bombshell on February 22, 2026, claiming to have breached the “Wendy’s International Franchise Database.” This massive leak exposes sensitive operational details, franchisee contacts, and most alarmingly live payment credentials used across various food brands. Imagine the chaos: hackers potentially skimming payments or spying on backend systems while Wendy’s stays silent…
Three Silicon Valley engineers have been charged with stealing critical trade secrets from Google and other tech giants, funneling them to Iran in a brazen insider plot. This case exposes vulnerabilities in the semiconductor world, where chip designs power everything from smartphones to military tech. The Arrested Trio Samaneh Ghandali, 41, her sister Soroor Ghandali,…
Cybersecurity experts have uncovered a sneaky new Android malware called Massiv, lurking inside fake IPTV apps that promise free streaming TV. This trojan targets mobile banking users, enabling full device hijacking for theft through advanced remote control tactics. Massiv’s Core Threats Massiv excels at device takeover (DTO) attacks, letting hackers remotely operate infected phones for…
