Cybercriminals mask malicious communications through Microsoft Teams relays

The DragonForce ransomware group used a custom malware called Backdoor.Turn to hide command-and-control traffic inside Microsoft Teams relay infrastructure during an intrusion at a U.S. services company, according to Symantec. DragonForce is a ransomwa… Continue reading Cybercriminals mask malicious communications through Microsoft Teams relays

Crypto scammers are sending couriers to victims’ homes to collect cash

Scammers behind cryptocurrency investment schemes are dispatching couriers to pick up cash from victims in person, the FBI warns. According to the agency, scammers usually approach victims through social media, text messages, or fake investment persona… Continue reading Crypto scammers are sending couriers to victims’ homes to collect cash

Planning a trip? Fake travel sites are multiplying this summer

Cyberattacks against hospitality, travel, and recreation organizations rose 24% year over year, reaching an average of 2,291 incidents per organization each week in May 2026, according to Check Point. (Source: Check Point) “The sector has more than dou… Continue reading Planning a trip? Fake travel sites are multiplying this summer

Chinese hackers breached North American research institutions via REDCap servers

A China-linked cyber espionage operation targeted North American medical research institutions through compromised REDCap servers, using custom malware to gain persistent access and collect sensitive information, Google’s Threat Intelligence Grou… Continue reading Chinese hackers breached North American research institutions via REDCap servers

Ukrainian national pleads guilty in connection with Conti ransomware

A Ukrainian national pleaded guilty to conspiracy to commit wire fraud in connection with the deployment of Conti ransomware, which targeted more than 1,000 victims worldwide. According to the U.S. Department of Justice, 44-year-old Oleksii Oleksiyovyc… Continue reading Ukrainian national pleads guilty in connection with Conti ransomware

Open-source CI/CD abuse detector guards against stolen credential attacks

CI/CD Abuse Detector is an open-source project that uses a large language model to flag suspicious changes to continuous integration and continuous deployment pipelines, workflows, and automation configurations. The repository contains drop-in template… Continue reading Open-source CI/CD abuse detector guards against stolen credential attacks

Proving what a military AI model will do is the real problem

Defense contractors build AI systems that task drones automatically and propose kill-chains to support soldiers. Several of these contractors have partnered with frontier AI companies to put advanced models into military tools. Anduril works with OpenA… Continue reading Proving what a military AI model will do is the real problem

Cybercriminals are moving away from mass phishing campaigns

Phishing activity declined by roughly 20% in both 2024 and 2025, according to research from Zscaler’s ThreatLabz team. The drop followed years of growth that pushed phishing activity above 2 billion hits in 2023. “Phishing volume measured b… Continue reading Cybercriminals are moving away from mass phishing campaigns

Authorities dismantle crypto laundering service that moved €336 million for cybercriminals

An international law enforcement operation has dismantled a cryptocurrency laundering service linked to ransomware groups and other cybercriminals that processed more than €336 million in illicit funds. The domain seizure notice (Source: Europol) Europ… Continue reading Authorities dismantle crypto laundering service that moved €336 million for cybercriminals