Microsoft Shuts Down Fox Tempest Malware Operation
A cybercrime group called Fox Tempest turned Microsoft's own software infrastructure into a weapon. The group ran a malware-signing service that let ransomware gangs and other criminals make dangerous software look completely legitimate — and it worked for nearly a year before Microsoft shut it down. Microsoft's Digital Crimes Unit dismantled the operation in May 2026, seizing infrastructure, revoking over
Teen Ran Infostealer Malware That Stole 28,000 Accounts
An 18-year-old from Odesa, Ukraine, has been identified as a key operator behind an infostealer malware campaign that compromised tens of thousands of online shoppers in the United States. Ukrainian cyberpolice, working alongside U.S. law enforcement, linked the suspect to attacks that ran throughout 2024 and into 2025 — draining credentials, hijacking accounts, and generating hundreds of thousands of dollars
How an npm Supply Chain Attack Poisoned 600 Packages
Over 600 software packages got poisoned in a single hour in the latest wave of the Shai-Hulud npm supply chain attack — and this time, the malware can forge the security badges developers trust to verify safe code. The npm supply chain attack represents a sharp escalation from a campaign that first emerged last September and has steadily grown more
7-Eleven Confirms Data Breach Tied to ShinyHunters Gang
7-Eleven has confirmed a data breach affecting its internal systems, with the attack traced back to April 8, 2026. The 7-Eleven data breach exposed documents tied to the company's franchise application process, and the group behind it wasted no time making demands. ShinyHunters, one of the most active cybercrime groups operating today, claimed responsibility and threatened to publish stolen data
Russia’s Kazuar Malware Has Evolved Into a Modular P2P Botnet
A sophisticated Russian cyber espionage tool has undergone a significant transformation. Kazuar malware, long associated with a Kremlin-linked hacking group, has evolved from a standard backdoor into a fully modular, peer-to-peer botnet engineered for long-term stealth and intelligence collection. New analysis from Microsoft details exactly how far this tool has come — and why it now ranks among the most
West Pharmaceutical Hit by Ransomware Attack, Data Stolen
One of America's largest pharmaceutical manufacturers is recovering from a serious cyberattack after criminals broke into its network, made off with company data, and locked down critical systems. West Pharmaceutical Services, a Pennsylvania-based S&P 500 company, disclosed the ransomware attack to the U.S. Securities and Exchange Commission on May 7, 2026, classifying it as a material cybersecurity incident with global
ShinyHunters Hit Canvas LMS in Massive Data Breach
Tens of millions of students, teachers, and staff woke up to a security nightmare this month. A Canvas LMS data breach carried out by the ShinyHunters extortion group has exposed data from an estimated 275 million people across nearly 9,000 educational institutions worldwide — making it the largest educational security breach on record. How the Attack Unfolded The story starts
JDownloader Malware Attack Replaced Official Installers
A serious JDownloader malware attack exposed users to malicious installers distributed through the software’s official website. Attackers reportedly compromised download links connected to the popular download manager and replaced legitimate files with malware-laced payloads designed to infect Windows and Linux systems. Security researchers warned that the incident highlights the growing danger of software supply chain attacks. Instead of targeting victims
NVIDIA GeForce NOW Data Breach Exposes Armenian User Data
A GeForce NOW data breach has been confirmed by NVIDIA, exposing personal information belonging to users of the cloud gaming service in Armenia. The incident did not touch NVIDIA's own global infrastructure, but it has put a spotlight on the security risks that come with the company's regional partner model. What Happened The breach originated at GFN.am, a third-party company
New Beagle Malware Hides Inside Fake Claude AI Installer
A convincing fake website impersonating Anthropic's Claude AI has been caught distributing a previously unknown Windows backdoor. Cybersecurity researchers have named the threat Beagle malware, and it arrives disguised as a legitimate tool aimed squarely at developers. A Fake Site Built to Fool Developers The site in question sits at the domain claude-pro[.]com. It mimics the look of Anthropic's real
