A newly identified ransomware operation called **Spirals** has completed a full corporate network compromise — initial access, lateral movement, data exfiltration, and full encryption — [in under 24 h
Threat actors are actively abusing Microsoft Teams voice calls to impersonate corporate IT support staff and install **EtherRAT** — a remote access trojan that hands attackers persistent control over
A [security researcher's writeup](https://mrbruh.com/msicenter/) published this week details a local privilege escalation (LPE) in MSI Center, the system management utility bundled with MSI gaming mot
Jamf Threat Labs has disclosed a new macOS information stealer — dubbed **PamStealer** — that tricks users into downloading a malicious compiled AppleScript (`.scpt`) file disguised as Maccy, a widely
Security researchers at Island have identified that **Adblock for YouTube** — a Chrome extension with over 10 million installs (extension ID: `cmedhionkhpnakcndndgjdbohmhepckk`) — contains the ability
Security researchers at Paradigm Shift have published a working exploit called [usbliter8](https://thehackernews.com/2026/06/unpatchable-usbliter8-exploit-breaks.html) that achieves arbitrary code exe
A ransomware-as-a-service operation called **Gentlemen** is actively developing and distributing a suite of endpoint detection and response (EDR) killer tools to its affiliates, [according to Bleeping
A large-scale malware campaign called **WeedHack** has compromised more than 116,000 systems running Minecraft since January 2026, according to [BleepingComputer](https://www.bleepingcomputer.com/news
Threat actors are actively exploiting a critical vulnerability in Fortinet's FortiClient Endpoint Management Server (EMS) to deploy credential-stealing malware across managed enterprise environments,
Threat actors are running a coordinated cryptojacking campaign that has found a novel distribution channel: poisoning search engine results and manipulating AI chatbot responses to steer victims towar