Anthropic's Claude Mythos model has identified over 23,000 potential vulnerabilities across 1,000 open source software projects, with nearly 3,900 critical and high-severity issues expected to be confirmed.
Cordial Spider and Snarky Spider, two financially-motivated threat groups, are targeting US-based organizations in multiple sectors for rapid data theft and extortion attacks, using voice-phishing and social engineering tactics.
Cybersecurity researchers uncovered a large-scale fraud operation using Telegram's Mini App feature to run crypto scams and distribute Android malware.
A cyber-espionage group known as HeartlessSoul has been targeting Russian government agencies and companies in the aviation industry to steal sensitive geospatial data.
A Brazilian tech firm specializing in DDoS protection has been linked to a botnet responsible for massive DDoS attacks against Brazilian ISPs, with evidence suggesting a security breach and potential competitor involvement.
A severe authentication bypass vulnerability in cPanel, tracked as CVE-2026-41940, is being actively exploited in the wild, affecting over 1.5 million instances.
Microsoft has released the KB5083631 optional cumulative update for Windows 11, including 34 changes and fixes, such as a new Xbox mode and improved security for batch files.
The FCC has approved new regulations to strengthen telecom companies' 'Know Your Customer' requirements and protect networks from cyberattacks.
Criminal IP and Securonix ThreatQ collaborate to integrate threat intelligence, enabling organizations to accelerate analysis and response with more actionable context.
Two cybersecurity incident responders were sentenced to four years in prison for conducting covert ransomware attacks, earning $1.2 million from one incident.