Live Threat IntelLive
Over 500 Organizations Hit in Years-Long Phishing Campaign(SecurityWeek)Hackers abuse Google ads, Claude.ai chats to push Mac malware(Bleeping Computer)Official JDownloader site served malware to Windows and Linux users between May 6 and May 7(Security Affairs)SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 96(Security Affairs)JDownloader site hacked to replace installers with Python RAT malware(Bleeping Computer)Fake OpenAI repository on Hugging Face pushes infostealer malware(Bleeping Computer)Braintrust security incident raises concerns over AI supply chain risks(Security Affairs)ShinyHunters Claims Second Attack Against Instructure(Dark Reading)TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms(The Hacker News)Worm rubs out competitor's malware, then takes control(The Register)NVIDIA confirms GeForce NOW data breach affecting Armenian users(Bleeping Computer)In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner(SecurityWeek)Zara Data Breach: 197,000 Customers Exposed in Third-Party Security Incident(Security Affairs)'Dirty Frag' Linux flaw one-ups CopyFail with no patches and public root exploit(The Register)Trellix source code breach claimed by RansomHouse hackers(Bleeping Computer)CISA gives feds four days to patch Ivanti flaw exploited as zero-day(Bleeping Computer)AI Firm Braintrust Prompts API Key Rotation After Data Breach(SecurityWeek)Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise(The Hacker News)PCPJack Campaign Boots TeamPCP Off Compromised Machines(Infosecurity Magazine)New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials(The Hacker News)Ransomware Group Takes Credit for Trellix Hack(SecurityWeek)New Linux 'Dirty Frag' zero-day gives root on all major distros(Bleeping Computer)Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks(SecurityWeek)Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions(The Hacker News)The Canvas Hack Is a New Kind of Ransomware Debacle(WIRED Security)Canvas Breach Disrupts Schools & Colleges Nationwide(Krebs on Security)Canvas login portals hacked in mass ShinyHunters extortion campaign(Bleeping Computer)After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud Secrets(Dark Reading)Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access(The Hacker News)OpenAI and Anthropic LLMs Used in Critical Infrastructure Cyber-Attack, Warns Dragos(Infosecurity Magazine)PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage(The Hacker News)Fake Claude AI Site Drops Beagle Backdoor on Windows Users(Infosecurity Magazine)AI-Driven Cyberattack on Mexico Couldn't Breach OT Systems(Dark Reading)Cybersecurity Stolen ChipSoft claims patient data confirmed destroyed following cyberattack(DataBreaches.net)Researchers Spot Uptick in Use of Vercel for Phishing Campaigns(Infosecurity Magazine)Threat Brief: Exploitation of PAN-OS Captive Portal Zero-Day for Unauthenticated Remote Code Execution(Palo Alto Unit 42)VoidStealer Malware Darts Past Google Chrome's Encryption(Dark Reading)Instructure Breach Exposes Schools' Vendor Dependence(Dark Reading)Missouri regulators escalate pressure on Conduent over data breach potentially affecting millions(DataBreaches.net)When Your Vendor’s Breach Becomes Your Lawsuit: Privacy Risk Lessons from Recent Bank Litigation(DataBreaches.net)Over 500 Organizations Hit in Years-Long Phishing Campaign(SecurityWeek)Hackers abuse Google ads, Claude.ai chats to push Mac malware(Bleeping Computer)Official JDownloader site served malware to Windows and Linux users between May 6 and May 7(Security Affairs)SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 96(Security Affairs)JDownloader site hacked to replace installers with Python RAT malware(Bleeping Computer)Fake OpenAI repository on Hugging Face pushes infostealer malware(Bleeping Computer)Braintrust security incident raises concerns over AI supply chain risks(Security Affairs)ShinyHunters Claims Second Attack Against Instructure(Dark Reading)TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms(The Hacker News)Worm rubs out competitor's malware, then takes control(The Register)NVIDIA confirms GeForce NOW data breach affecting Armenian users(Bleeping Computer)In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner(SecurityWeek)Zara Data Breach: 197,000 Customers Exposed in Third-Party Security Incident(Security Affairs)'Dirty Frag' Linux flaw one-ups CopyFail with no patches and public root exploit(The Register)Trellix source code breach claimed by RansomHouse hackers(Bleeping Computer)CISA gives feds four days to patch Ivanti flaw exploited as zero-day(Bleeping Computer)AI Firm Braintrust Prompts API Key Rotation After Data Breach(SecurityWeek)Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise(The Hacker News)PCPJack Campaign Boots TeamPCP Off Compromised Machines(Infosecurity Magazine)New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials(The Hacker News)Ransomware Group Takes Credit for Trellix Hack(SecurityWeek)New Linux 'Dirty Frag' zero-day gives root on all major distros(Bleeping Computer)Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks(SecurityWeek)Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions(The Hacker News)The Canvas Hack Is a New Kind of Ransomware Debacle(WIRED Security)Canvas Breach Disrupts Schools & Colleges Nationwide(Krebs on Security)Canvas login portals hacked in mass ShinyHunters extortion campaign(Bleeping Computer)After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud Secrets(Dark Reading)Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access(The Hacker News)OpenAI and Anthropic LLMs Used in Critical Infrastructure Cyber-Attack, Warns Dragos(Infosecurity Magazine)PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage(The Hacker News)Fake Claude AI Site Drops Beagle Backdoor on Windows Users(Infosecurity Magazine)AI-Driven Cyberattack on Mexico Couldn't Breach OT Systems(Dark Reading)Cybersecurity Stolen ChipSoft claims patient data confirmed destroyed following cyberattack(DataBreaches.net)Researchers Spot Uptick in Use of Vercel for Phishing Campaigns(Infosecurity Magazine)Threat Brief: Exploitation of PAN-OS Captive Portal Zero-Day for Unauthenticated Remote Code Execution(Palo Alto Unit 42)VoidStealer Malware Darts Past Google Chrome's Encryption(Dark Reading)Instructure Breach Exposes Schools' Vendor Dependence(Dark Reading)Missouri regulators escalate pressure on Conduent over data breach potentially affecting millions(DataBreaches.net)When Your Vendor’s Breach Becomes Your Lawsuit: Privacy Risk Lessons from Recent Bank Litigation(DataBreaches.net)