MyCyberWay

MyCyberWay https://validator.w3.org/feed/docs/rss2.html Aggregator German authorities identify REvil and GangCrab ransomware bosses AI agents found vulns in this popular Linux and Unix print server New GPUBreach attack enables system takeover via GPU rowhammer AI-Assisted Supply Chain Attack Targets GitHub Axios Attack Shows Social Complex Engineering Is Industrialized Fortinet Issues Emergency Patch for FortiClient Zero-Day Phishing LNK files and GitHub C2 power new DPRK cyber attacks Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit Microsoft fixes Classic Outlook bug causing email delivery issues Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations Attackers exploited this critical FortiClient EMS bug as a 0-day Microsoft removes Support and Recovery Assistant from Windows Microsoft links Medusa ransomware affiliate to zero-day attacks Drift $280M crypto theft linked to 6-month in-person operation Inside an AI‑enabled device code phishing campaign DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea CISA orders feds to patch exploited Fortinet EMS flaw by Friday Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations Home Traffic violation scams switch to QR codes in new phishing texts New FortiClient EMS flaw exploited in attacks, emergency patch released Automated Credential Harvesting Campaign Exploits React2Shell Flaw Shadow AI in Healthcare Is Here to Stay Attackers Exploit RCE Flaw as 14,000 F5 BIG-IP APM Instances Remain Exposed ⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers Guardarian Users Targeted With Malicious Strapi NPM Packages North Korean Hackers Target High-Profile Node.js Maintainers Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools Fortinet Rushes Emergency Fixes for Exploited Zero-Day $285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks CVE-2026-35616: Fortinet fixes actively exploited high-severity flaw Anthropic sure has a mess on its hands thanks to that Claude Code source leak SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 91 Google DeepMind Researchers Map Web Attacks Against AI Agents Hackers exploit React2Shell in automated credential theft campaign Researchers didn’t want to glamorize cybercrims. So they roasted them Image or Malware? Read until the end and answer in comments :) Security Affairs newsletter Round 571 by Pierluigi Paganini – INTERNATIONAL EDITION 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants BKA unmasks two REvil Ransomware operators behind 130+ German attacks Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS Axios npm hack used fake Teams error fix to hijack maintainer account Why Simple Breach Monitoring is No Longer Enough Qilin ransomware group claims the hack of German political party Die Linke U.S. CISA adds a flaw in TrueConf Client to its Known Exploited Vulnerabilities catalog OWASP GenAI Security Project Gets Update, New Tools Matrix