-
Canadian telecom providers face mounting cyber threats from ransomware, SIM swapping, data breaches, and nation-state attacks targeting critical infrastructure.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
ShinyHunters says its shinyhunte.rs domain was suspended after the Canvas LMS attacks, forcing the group to move fully to its dark web (.onion) site.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Researchers at Ontinue have discovered an undocumented malware campaign targeting developers with fake Claude Code installers to steal browser passwords and cookies.
·
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Pwn2Own Berlin 2026 reportedly reached full capacity for the first time, prompting rejected researchers to publicly disclose zero-day exploits targeting Firefox, NVIDIA, and AI platforms.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Operation HumanitarianBait uses fake aid documents, GitHub-hosted payloads, and Python spyware to target Russian-speaking victims.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Google researchers say hackers used AI to develop zero-day exploits, Android backdoors, and automated supply chain attacks targeting GitHub and PyPI.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
The Dirty Frag vulnerability affects Linux systems and allows root access escalation, while public PoC exploit code increases attack risks.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Hackers are abusing Vercel GenAI to create convincing phishing sites that mimic major brands, including Microsoft, Adidas, and Nike, making scams harder to detect.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
DigiCert revokes 60 code signing certificates after hackers used a malicious support chat attachment to sign the Zhong Stealer malware.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
JDownloader confirms a security breach where hackers manipulated official download links to distribute malicious files between 6 and 7 May 2026.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
