MyCyberWay https://validator.w3.org/feed/docs/rss2.html New ‘LucidRook’ malware used in targeted attacks on NGOs, universities New VENOM phishing attacks steal senior executives’ Microsoft logins Russia’s ‘Fancy Bear’ APT Continues Its Global Onslaught Eurail data breach impacted 308,777 people ‘BlueHammer’ Windows Zero-Day Exploit Signals Microsoft Bug Disclosure Issues Healthcare IT solutions provider ChipSoft hit by ransomware attack Malicious PDF reveals active Adobe Reader zero-day in the wild The agentic SOC—Rethinking SecOps for the next decade Google Chrome adds infostealer protection against session cookie theft Crypto? Huh. Good gawd y’all, what is it good for? $45M in this case Do Ceasefires Slow Cyberattacks? History Suggests Not EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets ‘Several dozen’ high-value corporations hit by new extortion crew in helpdesk phishing spree UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns Smart Slider updates hijacked to push malicious WordPress, Joomla versions Why does the NYT think this British man created Bitcoin? Chevin pulls the handbrake on FleetWave software after security scare STX RAT Targets Finance Sector With Advanced Stealth Tactics Investigating Storm-2755: “Payroll pirate” attacks targeting Canadian employees Months-old Adobe Reader zero-day uses PDFs to size up targets Masjesu botnet targets IoT devices while evading high-profile networks When attackers already have the keys, MFA is just another door to open Bitcoin Depot Reports $3.6m Crypto Theft After System Breach Microsoft locks out VeraCrypt and WireGuard devs, blames verification process Apple Intelligence AI Guardrails Bypassed in New Attack Can we Trust AI? No – But Eventually We Must Intent redirection vulnerability in third-party SDK exposed millions of Android wallets to potential risk Security researchers tricked Apple Intelligence into cursing at users. It could have been a lot worse ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories We let OpenClaw loose on an internal network. Here’s what it found Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized Access Webinar: From noise to signal – What threat actors are targeting next Palo Alto Networks, SonicWall Patch High-Severity Vulnerabilities Zephyr Energy loses £700K in cyber hit that rerouted contractor payment The Hidden Security Risks of Shadow AI in Enterprises Atomic Stealer MacOS ClickFix Attack Bypasses Apple Security Warnings Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025 The Hidden ROI of Visibility: Better Decisions, Better Behavior, Better Security Middle East Hack-for-Hire Operation Traced to South Asian Cyber Espionage Group Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region Eurail says December data breach impacts 300,000 individuals Governance Gaps Emerge as AI Agents Drive 76% Increase in NHIs Google Warns of New Campaign Targeting BPOs to Steal Corporate Data The alleged breach of China’s National Supercomputing Center can have serious geopolitical consequences Home Hackers exploiting Acrobat Reader zero-day flaw since December Adobe Reader Zero-Day Exploited for Months: Researcher Google Warns of New Threat Group Targeting BPOs and Helpdesks 300,000 People Impacted by Eurail Data Breach Aggregator