A Ukrainian man has entered a guilty plea in a U.S. court following his extradition from Ireland, admitting to involvement in the notorious Conti ransomware operation—identified as one of the most destructive cybercrime syndicates active during the pandemic years. Oleksii Oleksiyovych Lytvynenko, aged 44, confessed to conspiracy to commit wire…
OpenAI Discloses Compromise in macOS App Signing Workflow OpenAI has issued a statement regarding a significant security incident that occurred on March 31, revealing that a GitHub Actions workflow tied to the signing of its macOS applications inadvertently downloaded a malicious Axios library. Fortunately, the company has confirmed that this…
The U.S. Federal Bureau of Investigation (FBI) and the Indonesian National Police have successfully disrupted a global phishing operation that relied on a commercially available toolkit known as W3LL. This initiative is reported to have facilitated the theft of account credentials from thousands of victims and aimed to defraud over…
European law enforcement authorities have reported a significant breakthrough in cybersecurity operations, successfully infiltrating and dismantling a virtual private network (VPN) service known as First VPN, which was allegedly utilized for ransomware attacks and various criminal activities. This decisive action involved the identification of thousands of users linked to the…
A recently uncovered campaign attributed to the China-based cybercrime group known as Silver Fox—also referred to as Monarch, SwimSnake, The Great Thief of Valley, UTG-Q-1000, and Void Arachne—has targeted organizations in Russia and India with new malware identified as ABCDoor. The operation has prominently involved the use of phishing emails…
In a recent incident, the Iranian state-sponsored hacking group known as MuddyWater has been implicated in a ransomware attack described as a “false flag” operation. This incident was tracked by Rapid7 in early 2026, where attackers exploited social engineering techniques utilizing Microsoft Teams to initiate their malicious activities. Initially perceived…
The American educational technology company Instructure, known for its Canvas platform, has reported a breach involving a decentralized cybercriminal group. This group threatened to leak sensitive data stolen from thousands of educational institutions following a successful infiltration of Instructure’s network. In an update released on Monday, the Utah-based firm announced…
A major cybersecurity incident has unfolded involving a 22-year-old man from North London who pleaded guilty to blackmailing tech giant Apple. The suspect claimed to possess access to over 300 million iCloud accounts, leveraging this information as a bargaining chip by demanding a ransom. This case sheds light on the…
Discontent about the integration of artificial intelligence into online platforms is emerging from an unexpected source. A disgruntled individual has expressed frustration regarding a cybercrime forum’s plans to enhance its features with generative AI. In an anonymous online comment, the user stated, “No one is asking for this—we want you…
