Home
Services
Credentials
News
Contact
News
NEWS
The latest news in cybersecurity!
MAY
04
Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
By:
info@thehackernews.com (The Hacker News)
on
MAY
04
An active phishing campaign has been observed targeting multiple vectors since at least April 2025, with legitimate Remote Monitoring and Management (RMM) software as a way to establish persistent remote access to compromised hosts. The activity, codenamed VENOMOUS#HELPER, has impacted over 80 organizations, most of which are in the U.S., according to Securonix. It shares overlaps with clusters
Read more >>
MAY
04
Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass
By:
info@thehackernews.com (The Hacker News)
on
MAY
04
Progress Software has released updates to address two security flaws in MOVEit Automation, including a critical bug that could result in an authentication bypass. MOVEit Automation (formerly Central) is a secure, server-based managed file transfer (MFT) solution used to schedule and automate file movement workflows in enterprise environments without requiring any custom scripts. The
Read more >>
MAY
04
⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More
By:
info@thehackernews.com (The Hacker News)
on
MAY
04
This week, the shadows moved faster than the patches. While most teams were still triaging last month’s alerts, attackers had already turned control panels into kill switches, kernels into open doors, and open-source pipelines into silent delivery systems. The game has shifted from breach to occupation. They’re living inside SaaS sessions, pushing code with trusted commits, and scaling
Read more >>
MAY
04
2026: The Year of AI-Assisted Attacks
By:
info@thehackernews.com (The Hacker News)
on
MAY
04
On December 4, 2025, a 17-year-old was arrested in Osaka under Japan’s Unauthorized Access Prohibition Act. The young man had run malicious code to extract the personal data of over 7 million users of Kaikatsu Club, Japan's largest internet cafe chain. When asked, the young man shared his motivation for the hack: he wanted to buy Pokémon cards. In a sense, this is a fairly conventional story.
Read more >>
MAY
04
Silver Fox Deploys ABCDoor Malware via Tax-Themed Phishing in India and Russia
By:
info@thehackernews.com (The Hacker News)
on
MAY
04
The China-based cybercrime group known as Silver Fox has been linked to a new campaign targeting organizations in Russia and India with a new malware called ABCDoor. The activity involved using phishing emails that mimic correspondence from the Income Tax Department of India in December 2025, followed by a similar campaign aimed at Russian entities. "Both waves followed a nearly identical
Read more >>
MAY
04
Critical cPanel Vulnerability Weaponized to Target Government and MSP Networks
By:
info@thehackernews.com (The Hacker News)
on
MAY
04
A previously unknown threat actor has been observed targeting government and military entities in Southeast Asia, alongside a smaller cluster of managed service providers (MSPs) and hosting providers in the Philippines, Laos, Canada, South Africa, and the U.S., by exploiting the recently disclosed vulnerability in cPanel. The activity, detected by Ctrl-Alt-Intel on May 2, 2026, involves the
Read more >>
MAY
04
Global Crackdown Arrests 276, Shuts 9 Crypto Scam Centers, Seizes $701M
By:
info@thehackernews.com (The Hacker News)
on
MAY
04
A coordinated international operation involving U.S. and Chinese authorities has arrested at least 276 suspects and shut down nine scam centers used for cryptocurrency investment fraud schemes targeting Americans, resulting in millions of dollars in losses. The crackdown was led by the Dubai Police, under the United Arab Emirates (UAE) Ministry of Interior, in partnership with the U.S. Federal
Read more >>
MAY
03
CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV
By:
info@thehackernews.com (The Hacker News)
on
MAY
03
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a recently disclosed security flaw impacting various Linux distributions to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerability, tracked as CVE-2026-31431 (CVSS score: 7.8), is a case of local privilege escalation (LPE) flaw that could allow an
Read more >>
MAY
02
Trellix Confirms Source Code Breach With Unauthorized Repository Access
By:
info@thehackernews.com (The Hacker News)
on
MAY
02
Cybersecurity company Trellix has announced that it suffered a breach that enabled unauthorized access to a "portion" of its source code. It said it "recently identified" the compromise of its source code repository and that it began working with "leading forensic experts" to resolve the matter immediately. It also said it has notified law enforcement of the matter. Trellix did not disclose the
Read more >>
MAY
01
30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign
By:
info@thehackernews.com (The Hacker News)
on
MAY
01
A newly discovered Vietnamese-linked operation has been observed using a Google AppSheet as a "phishing relay" to distribute phishing emails with an aim to compromise Facebook accounts. The activity has been codenamed AccountDumpling by Guardio, with the scheme selling the stolen accounts back through an illicit storefront run by the threat actors. In all, roughly 30,000 Facebook accounts are
Read more >>
More posts
Contact Us
014
91 842 907
info@pensecure.co.uk
Graffix House,
Newtown Rd,
Henley-on-Thames,
Oxfordshire,
RG9 1LY
Business Hours
Mon - Fri
9:00 am
-
5:00 pm
Sat - Sun
Closed
Copyright © PenSecure
Share by:
