Search

bleepingcomputer.com › news › security

Iranian hackers targeted major South Korean electronics maker

…and domain reconnaissance, followed by antivirus enumeration via WMI, screenshot capture, and the download of additional malware. Credential theft occurred via fake Windows prompts, registry hive theft (SAM/SECURITY/SYSTEM), and Kerberos…

May 13, 2026 · Bill Toulas

Top stories

bleepingcomputer.com

WordPress malware campaign hides payloads in Steam profiles

3d ago

bleepingcomputer.com

ChatGPT share links abused to host fake outage pages to deliver malware

6d ago

bleepingcomputer.com

Hackers exploit FortiClient EMS flaw to push infostealer malware

1w ago

bleepingcomputer.com

GPU mining malware spreads via SEO poisoning, AI chatbots

1w ago

bleepingcomputer.com › news › security

Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin

…Admin-level access allows attackers to access private databases, plant backdoors, redirect visitors to unsafe locations, distribute malware, create rogue admin users, and more. While Wordfence warned in its post that they…

May 14, 2026 · Bill Toulas

bleepingcomputer.com › news › security

Police seize “First VPN” service used in ransomware, data theft attacks

…VPN tools encrypt users’ traffic and hide their real IP addresses. While they are used legitimately to protect privacy on public WiFi, bypass censorship, reduce tracking, and enable secure remote work, threat…

May 21, 2026 · Bill Toulas

bleepingcomputer.com › news › legal

Italy disrupts CINEMAGOAL piracy app that stole streaming auth codes

…rather than receiving a pirate stream, and masked customers’ real IP addresses. "A highly advanced and previously unseen system that not only bypassed the security blocks implemented by the platforms, but also…

May 23, 2026 · Bill Toulas

bleepingcomputer.com › news › security

Instructure confirms hackers used Canvas flaw to deface portals

…The topics he writes about include malware, vulnerabilities, exploits and security defenses, as well as research and innovation in information security. His work has been published by Bitdefender, Netgear, The Security Ledger…

May 11, 2026 · Ionut Ilascu

bleepingcomputer.com › news › legal

GM agrees to $12.75M California settlement over sale of drivers’ data

…over security risks UK fines LastPass over 2022 data breach impacting 1.6 million users INTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers Android 17 to expand banking scam call and privacy…

May 11, 2026 · Bill Toulas

bleepingcomputer.com › news › security

Critical vm2 sandbox bug lets attackers execute code on hosts

…The security issue is tracked as CVE-2026-26956 and has been confirmed to impact vm2 version 3.10.4, although earlier releases may also be vulnerable. Proof-of-concept (PoC) exploit…

May 6, 2026 · Bill Toulas

bleepingcomputer.com › news › artificial-intelligence

Anthropic’s restricted Claude Mythos model may be coming to Claude Code

…On April 7, Anthropic announced the Mythos in early preview and called it a new frontier model with strikingly advanced capabilities in computer security tasks. Anthropic said the Mythos model shows major…

May 25, 2026 · Mayank Parmar

bleepingcomputer.com › news › security

Trend Micro warns of Apex One zero-day exploited in the wild

…Apex One is Trend Micro's enterprise-grade endpoint security platform that protects corporate networks from a wide range of security threats, including malware, ransomware, fileless attacks, and web-based threats. Tracked…

May 22, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

Dashlane password manager users locked out by brute force attacks

…Secure platforms implement protection measures such as rate limiting, CAPTCHA challenges, and account lockouts to block automated attacks after a threshold of failed attempts is reached. According to Dashlane’s status page…

Jun 1, 2026 · Bill Toulas