Cyber threats and incidents
FBI Warns of Kali365 Phishing-as-a-Service Platform After April Microsoft 365 Attacks
What happened The FBI issued an advisory on Thursday about Kali365, a Telegram-based phishing-as-a-service platform first observed in April 2026 that enables cybercriminals to capture OAuth tokens and gain persistent access to ...
Ukraine Probes Teen Suspect in Cyber Theft Scheme Targeting California Online Shoppers
What happened Ukrainian authorities have identified an 18-year-old suspect from Odesa allegedly linked to an international cybercrime operation that compromised nearly 30,000 customer accounts belonging to an unnamed California-based online retailer between ...
Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack
What happened TeamPCP’s Mini Shai-Hulud supply chain campaign has expanded again, with over 320 npm packages compromised through a hijacked maintainer account in the @antv namespace. The compromised account, atoll, also publishes ...
Senator Presses CISA for Answers About Alleged GitHub Repository Credential Leak
What happened US Senator Maggie Hassan sent a letter to CISA Acting Director Nick Andersen on Tuesday demanding answers and a classified briefing about an alleged security incident involving a public GitHub ...
GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension
What happened GitHub has confirmed that a breach of its internal repositories resulted from a compromised employee device infected through a trojanized version of the Nx Console VS Code extension. The extension, ...
Huawei Zero-Day Attack Behind Luxembourg’s 2025 Nationwide Telecoms Outage
What happened A previously undisclosed zero-day vulnerability in Huawei enterprise router software caused a nationwide telecommunications outage in Luxembourg on July 23, 2025, disrupting mobile, landline, and emergency communications for more than ...
Microsoft Disrupts Fox Tempest Malware-Signing-as-a-Service Platform Tied to Ransomware Gangs
What happened Microsoft unsealed a legal case in US District Court on Tuesday detailing the disruption of Fox Tempest, a malware-signing-as-a-service platform that has operated since May 2025, providing ransomware affiliates and ...
CISO Diaries: Oleksii Lukin on Security, Discipline, and Resilience at National Scale
Oleksii Lukin is CISO and Head of IT Security at Ukrposhta, Ukraine’s largest postal and logistics organization, operating over 12,000 branches and serving millions of citizens across critical mail, financial, and government-adjacent ...
Multiple US Healthcare Data Breaches Expose Millions of Patient Records
What happened Several major healthcare data breaches have been added to the HHS Office for Civil Rights breach tracker in recent days, with confirmed figures now public for incidents that were disclosed ...
Grafana Labs Refuses to Pay Ransom After Codebase Theft
What happened Grafana Labs confirmed over the weekend that an unauthorized party obtained a GitHub access token and used it to download the company’s codebase. The extortion group CoinbaseCartel claimed responsibility on ...
