Tootfinder

Odido hackers demand at least €1 million, Thursday is deadline
https://www.dutchnews.nl/2026/02/odido-hackers-demand-at-least-e1-million-thursday-is-deadline/

Odido hackers demand at least €1 million, Thursday is deadline - DutchNews.nl
Hackers claiming to be behind the theft of information about millions of current and former clients of telecoms company Odido are threatening to publish the data on the dark web unless the company pays them at least €1 million, broadcaster RTL said on Tuesday. RTL said the hackers, which it named as the “Shinyhunters” group, have said they want a “low seven-figure sum” in cash. The broadcaster published a screenshot of the demand, in English, which states: “this is the...

A Top Google Search Result for Claude Plugins Was Planted by Hackers https://www.404media.co/a-top-google-search-result-for-claude-plugins-was-planted-by-hackers/

Crunchyroll is investigating a breach after hackers claimed they accessed a support agent's account and stole the personal information of ~6.8M users (Lawrence Abrams/BleepingComputer)
https://www.bleepingcomputer.com/news/secu

Crunchyroll probes breach after hacker claims to steal 6.8M users' data
Popular anime streaming platform Crunchyroll is investigating a breach after hackers claimed to have stolen personal information for approximately 6.8 million people.

FBI, CISA Warn Russian Hackers Are Targeting High-Value Individuals Through #Signal
https://cybersecuritynews.com/fbi-cisa-warn-russian-hackers/
How Signal gets "hac…

Five Eyes allies warn hackers are actively exploiting Cisco SD-WAN flaws https://therecord.media/five-eyes-warn-hackers-exploit-cisco-sd-wan

Google disrupts Chinese-linked group UNC2814, which breached 53 organizations across 42 countries and utilized Google Sheets to manage targeting and data theft (A.J. Vicens/Reuters)
https://www.reuters.com/sustainability/b…

Ukrainian hackers infiltrated Russian drone operator systems for six months, exposing how Russia weaponized Belarusian civilian infrastructure to strike Ukraine and test attack routes into NATO countries
https://euromaid…

Russia used Belarus's cell towers to bomb Ukrainian power plants. Then hackers got inside the operators' chatrooms - Euromaidan Press
For six months, Ukrainian IT specialists watched Russian drone operators plan routes in real time — tracking launch orders and flight paths, feeding everything to Ukraine's defense forces.

Whoa, Veritasium has made a video about Free Software (what I call #Libre software). https://www.youtube.com/watch?v=aoag03mSuXQ - naturally there're also dark 'hackers' (I prefer 'crac…

"Using Google Sheets allowed the group to evade detection and blend into normal network traffic and was not a compromise of any Google product, the company added."
https://www.reuters.com/sustainability/boa

North Korean state hackers seen using Medusa ransomware in attacks on US, Middle East https://therecord.media/north-korean-hackers-using-medusa-ransomware

https://www.hope.net/
The HOPE conference is returning to Manhattan!

Hackers On Planet Earth (HOPE) Conference
HOPE (Hackers On Planet Earth) is an annual conference for hackers, makers, and tech enthusiasts based in New York City.

Which of the following melodies should be played by a weird AI laptop that's like an accordion?
Thanks to @… for seeding the thought: <https://masto.hackers.town/@lmorch…

From @…: How Hackers Are Fighting Back Against ICE
https://www.eff.org/deeplinks/2026/01/how-hackers-are-fighting-back-against-ice…

How Hackers Are Fighting Back Against ICE
A few enterprising hackers have started projects to do counter surveillance against ICE, and hopefully protect their communities through clever use of technology.

Crunchyroll is investigating a breach after hackers claimed they accessed a support agent's account and stole the personal information of ~6.8M users (Lawrence Abrams/BleepingComputer)
https://www.bleepingcomputer.com/news/secu

Russian-speaking hackers used gen AI tools to compromise 600 firewalls, Amazon says https://therecord.media/gen-ai-fortigate-hackers-russia

“The main goal of hackers is personal data that can be used for blackmail or manipulation. If the device has a microphone and camera, they can technically be activated for surveillance, even if it is programmatically prohibited.”
Hackers have learned to hack smart vacuum cleaners
https://

Hackers have learned to hack smart vacuum cleaners
It is impossible to visually determine a hack - the device continues to work properly

South Korea continues to take it on the chin.
Personal and credit information was leaked after NRL Capital Lend, a 100% subsidiary of The LEADCORP, the No. 1 domestic lending company in the country, was hit by a hacking attack.
https://biz.chosun.com/en/en-finance/2

Hackers breach South Korea’s top lender subsidiary, leak customer data
Hackers breach South Koreas top lender subsidiary, leak customer data

We’ve been saying this for years now, and we’re going to keep saying it until the message finally sinks in:
mandatory age verification creates massive, centralized honeypots of sensitive biometric data that will inevitably be breached.
Every single time.
And every single time it happens,
the politicians who mandated these systems and the companies that built them act shocked—shocked!
—that collecting enormous databases of government IDs, facial scans, and bio…

Hackers Expose The Massive Surveillance Stack Hiding Inside Your “Age Verification” Check
We’ve been saying this for years now, and we’re going to keep saying it until the message finally sinks in: mandatory age verification creates massive, centralized honeypots of sensitiv…

4th Generation Shelly security issue
#homeassistant #smarthome #iot

Cybersecurity researchers have uncovered a new form of attack that hackers could leverage to steal sensitive information from Microsoft's Copilot chatbot with just a single click.
https://www.computing.co.uk/news/2026/security/single-click-attac…

Single-click attack targeting Copilot users, researchers warn
Cybersecurity researchers have uncovered a new form of attack that hackers could leverage to steal sensitive information from Microsoft's Copilot chatbot with just a single ...

A new version of iPhone exploit kit DarkSword has been leaked on GitHub; iVerify co-founder Matthias Frielingsdorf says the exploits "will work out of the box" (TechCrunch)
https://techcrunch.com/2026/03/23/someone-has…

Someone has publicly leaked an exploit kit that can hack millions of iPhones | TechCrunch
Leaked "DarkSword" exploits published to GitHub allow hackers and cybercriminals to target iPhone users running old versions of iOS with spyware, according to cybersecurity researchers.

Swayne blamed “hackers” in 2006 after leaked emails revealed his disparaging nicknames for fellow MPs, including “Mr Angry” and “mincehead.”
Conservative Lawmaker Blames ‘Hackers’ After His Account Shares Photo of a Shirtless Man: ‘Needless to Say I Was Disgusted

Conservative Lawmaker Blames ‘Hackers’ After His Account Shares Photo of a Shirtless Man: R ...
A conservative lawmaker from the U.K. blamed "hackers" on Wednesday after his account reposted a photo of a shirtless man with abs.

De schakelkastjes van Withthegrid houden het stroomnet in balans – en zijn daarom een doelwit voor hackers | de Volkskrant
#Energietransitie

Gli hacker cinesi prendono di mira le milizie del sud-est asiatico con il malware AppleChris e MemFun
Una sospetta operazione di spionaggio informatico con sede in Cina ha preso di mira organizzazioni militari del sud-est asiatico come parte di una campagna sponsorizzata dallo stato che risale almeno al 2020.
L'UnitŠ 42 di Palo Alto Networks sta monitorando l'attivitŠ di minaccia con il nome CL-STA-1087, dove CL si riferisce a cluster e STA sta per motivazione sostenuta d…

It looks like Wynn actually paid ShinyHunters the $1.5 million ransom, likely allowing them to escape the $100 million-level in costs MGM incurred when refusing to pay a ransom to the same people.
https://www.casino.org/news/wynn-resorts-co…

Wynn Resorts Data Breach Confirmed After Cyberattack
Wynn Resorts has confirmed a breach resulted in 800,000 employee records stolen by hackers, while a ransom payment remains unconfirmed.

The hacking group, tracked as UNC2814 and "Gallium,” has a nearly decade-long history of penetrating government organizations and telecommunications companies, the company said in findings shared exclusively with Reuters.
https://www.

Hackers of the world, unite!

Hackers target Afghan government workers with fake correspondence from senior officials https://therecord.media/hackers-target-afghan-workers

Check out today's Metacurity for the most critical infosec developments you might have missed over the weekend, including
--Russian spies hijack Signal and WhatsApp accounts in campaign targeting officials and journalists,
--Supply chain attack compromised Trivy vulnerability scanner,
--UK Financial Conduct Authority gave Palantir access to sensitive data,
--Hackers stole $23m in Ether from DeFi protocol Resolv Labs,
--Bluenoroff group stole 18.5k purchase re…

Russian spies hijack Signal and WhatsApp accounts in campaign targeting officials and journalists
Supply chain attack compromised Trivy vulnerability scanner, UK Financial Conduct Authority gave Palantir access to sensitive data, Hackers stole $23m in Ether from DeFi protocol Resolve Labs, Bluenoroff group stole 18.5k purchase records from gift card platform Bitrefill, much more

Returning from Manchester after our meal celebrating the end of a friendly current exercise competition. One comment did come up if there was any way we could avoid #strava. So fellow open source hackers does anyone know of #selfhosting solution that would allow me and a couple of friends to log …

"Hackers On Planet Earth conference is now officially a registered 501(c)(3) non-profit corporation. While we will always have a relationship with 2600 Magazine, HOPE is now its own independent entity."
https://www.hope.net/

Hackers On Planet Earth (HOPE) Conference
HOPE (Hackers On Planet Earth) is an annual conference for hackers, makers, and tech enthusiasts based in New York City.

Hackers breach contractor linked to Ukraine’s central bank collectible coin store https://therecord.media/hackers-breach-ukraine-national-bank-contractor

Nova Scotia legislator Rick Burns, who is the ministerial assistant for the Department of Cyber Security and Digital Solutions, says hackers have released personal images of him and his wife after he refused to provide payment in a blackmail attempt.
https://www.cbc…

PC MLA says hackers accessed and shared intimate images on his devices | CBC News
The representative for Hammonds Plains-Lucasville says hackers requested money and his family refused payment.

Singapore blames Chinese-backed hacking group UNC3886 for a months-long cyber-espionage campaign that targeted its four largest telecommunication companies (Zack Whittaker/TechCrunch)
https://techcrunch.com/2026/02/10/singapore-…

Singapore says China-backed hackers targeted its four largest phone companies | TechCrunch
The Singaporean government said the China-backed hackers gained "limited access to critical systems" run by the country's top four telecommunication giants, but said they did not disrupt services or steal customers' data.

How Sandia Labs’ Chrisma Jackson protects nuclear secrets from hackers around the clock
https://www.abqjournal.com/business/how-sandia-labs-chrisma-jackson-protects-nuclear-secrets-from-hackers-around-the-clock…

How Sandia Labs’ Chrisma Jackson protects nuclear secrets from hackers around the clock
Chrisma Jackson, Sandia National Laboratories’ top cybersecurity director, discusses protecting nuclear weapons data from constant threats and how her team defends against sophisticated attacks around the clock.

"According to the report, the spearphishing emails relied on links that appeared trustworthy because they passed through legitimate online advertising and click-tracking systems commonly used to track user engagement."
North Korea-linked hackers pose as human rights activists, report says
<…

North Korea-linked hackers pose as human rights activists, report says - UPI.com
North Korea-linked hackers are using emails that impersonate human rights organizations and financial institutions in phishing attacks, according to a report released Monday.

Source: the perpetrators of a wiper attack on Stryker appear to have used Microsoft Intune to issue a "remote wipe" command against all connected devices (Brian Krebs/Krebs on Security)
https://krebsonsecurity.com/2026/03/iran-bac…

Every year hundreds of dedicated hackers put their heads together and ask themselves one question
"How are we going to do it bigger, and better, than last year?",
and every year they do. Join them!
Give us your craziest ideas, your fresh outlook, your passion.
This is the place you can find all of the open calls for DEF CON Content, so pick your poison and show us what you got!

The UK's National Cyber Security Centre has warned organisations of an increased risk of Iran-linked cyberattacks amid the fast developing conflict in the Middle East.
https://www.computing.co.uk/news/2026/secu…

Iran-linked hackers could target UK organisations, NCSC warns
The UK's National Cyber Security Centre has warned organisations of an increased risk of Iran-linked cyberattacks amid the fast developing conflict in the Middle East.

Grubhub confirms hackers stole data in recent security breach
https://www.bleepingcomputer.com/news/security/grubhub-confirms-hackers-stole-data-in-recent-security-breach/

Grubhub confirms hackers stole data in recent security breach
Food delivery platform Grubhub has confirmed a recent data breach after hackers accessed its systems, with sources telling BleepingComputer the company is now facing extortion demands.

From a Falun Gong publication.
A suspected ransomware attack on China’s National Supercomputing Center (NSCC) in Tianjin has raised serious concerns about the security of sensitive research data linked to the country’s aerospace, defense, and scientific programs.
https:/…

Hackers Claim Breach of China’s Supercomputing Hub, Stealing 10PB of Sensitive Military Data - Vision Times
A group of hackers claim to have breached China’s National Supercomputing Center in Tianjin and stolen more than 10 petabytes of research data, including sensitive aerospace and military simulations

Hackers target supporters of Iran protests in new espionage campaign https://therecord.media/hackers-target-iran-protest-supporters-cyber-campaign

The FBI and CISA warn hackers tied to Russian intelligence services are targeting users of messaging apps such as Signal with phishing attacks (Tim Starks/CyberScoop)
https://cyberscoop.com/fbi-cisa-issue-psa-on-russian-intelligence-campai…

FBI, CISA issue PSA on Russian intelligence campaign to target messaging apps
It echoes earlier alerts from the Netherlands and Germany, and is the latest to warn about targeting of Signal users and others.

Chinese hackers targeting ‘high value’ North American critical infrastructure, Cisco says https://therecord.media/china-hackers-apt-cisco-talos

It's been a year since North Korean hackers stole $1.5 billion from Bybit, and they completely got away with it, ha ha ha.
Bybit exploit 12 months on: the DPRK threat continues
https://www.elliptic.co/blog/bybit-exploit-12-months-on-the-dprk-threat…

Bybit exploit 12 months on: the DPRK threat continues
The Bybit hack was an inflection point, not a culmination. Elliptic research reveals how DPRK operatives may now be creating cryptoasset projects, not just infiltrating them.

Notepad Hijacked by
State-Sponsored Hackers
Following the security disclosure published in the v8.8.9 announcement investigation has continued in collaboration with external experts and with the full involvement of the (now former) shared hosting provider.
According to the analysis provided by the security experts,
the attack involved infrastructure-level compromise
that allowed malicious actors to intercept and redirect update traffic destined for notepad-plu…

I don't know why, given all the important institutions that hackers attack -- hospitals, schools, daycare centers -- but it really bothers me when they do things like this. It seems gratuitous somehow.
Cyberattack on the Dresden State Art Collections
https://artdependence.com/…

ArtDependence | Cyberattack on the Dresden State Art Collections
Cyberattack on the Dresden State Art Collections

Target's dev server offline after hackers claim to steal source code
https://www.bleepingcomputer.com/news/security/targets-dev-server-offline-after-hackers-claim-to-steal-source-code/

Target's dev server offline after hackers claim to steal source code
Hackers are claiming to be selling internal source code belonging to Target Corporation, after publishing what appears to be a sample of stolen code repositories on a public software development platform. After BleepingComputer notified Target, the files were taken offline and the retailer's developer Git server was inaccessible.

Police raid homes of alleged Black Basta hackers, hunt suspected Russian ringleader https://therecord.media/police-raid-homes-of-alleged-black-basta-hackers

This sounds like a useful and perhaps fun gathering.
One of London's best-loved gatherings for journalists and technologists is returning after a pandemic hiatus
Source Code: the spirit of Hacks/Hackers LDN is back with a new name
https://www.journalism.co.u…

Source Code: the spirit of Hacks/Hackers LDN is back with a new name
One of London's best-loved gatherings for journalists and technologists is returning after a pandemic hiatus, reborn as Source Code, and ready to pick up exactly where it left off

A Western Sydney council, Fairfield City, has been completely pwned by ransomware. It has been granted an injunction to stop people publishing stolen data, as well as a suppression order over details, including the council's communications with the hackers.
https://

Meta's Metaverse is dead, Western Sydney city council hacked and satellite image providers pressured
Plus: Kagi will translate LinkedIn speak, or Australian, or, really, anything

https://techcrunch.com/2026/03/23/someone-has-publicly-leaked-an-exploit-kit-that-can-hack-millions-of-iphones/

Someone has publicly leaked an exploit kit that can hack millions of iPhones | TechCrunch
Leaked "DarkSword" exploits published to GitHub allow hackers and cybercriminals to target iPhone users running old versions of iOS with spyware, according to cybersecurity researchers.

Researchers from Google, iVerify, and Lookout discover DarkSword, a hacking tool used by Russian state-sponsored groups to target iOS 18 via Ukrainian websites (Andy Greenberg/Wired)
https://www.wired.com/story/hundreds-of-millions…

Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild
A powerful iPhone-hacking technique known as DarkSword has been discovered in use by Russian hackers. It can take over devices running iOS 18 that simply visit infected websites.

Each week, Metacurity offers our free and paid subscribers a run-down of the best long-form infosec-related reads that I couldn't get to in the daily news crush.
This week's selection is one for the record books and covers
--Don't threaten noted cybersecurity researchers,
--Romance scammers use AI to exploit victims,
--Drug cartels embrace crypto,
--Chinese hackers exploited insecure VPNs,
--Chinese bot traffic is flooding the web,
--Isra…

Best infosec-related long reads for the week of 2/14/26
Don't threaten noted cybersecurity researchers, Romance scammers are using AI to exploit victims, Drug cartels are embracing crypto, Chinese hackers exploited insecure VPNs, Chinese bot traffic is flooding the web, Israel gains an edge on automotive spying, A fake DPRK IT worker tells all, more

Planning applications in one of London’s wealthiest boroughs have ground to a halt as a result of a cyberattack before Christmas, leaving residents and businesses in limbo.

Hackers bring Chelsea’s planners to a standstill
London councils are scrambling to get services online after a cyberattack before Christmas

Air Côte d'Ivoire confirms cyberattack following ransomware claims https://therecord.media/air-cote-divoire-confirms-cyberattack

Genians says North Korea's Konni Group used KakaoTalk in a spear-phishing campaign with emails offering what appeared to be appointments as lecturers on North Korean human rights issues
https://www.upi.com/Top_News/World-News/20

North Korea hackers used KakaoTalk in spear-phishing campaign, report says - UPI.com
North Korea-linked hackers carried out a spear-phishing campaign that used the South Korean messaging platform KakaoTalk to spread malware, according to a report Monday.

Vincenzo Iozzo, Joichi Ito and Pablos Holman are barred from future attendance after Justice Department files revealed their roles in efforts to secure Jeffrey Epstein’s access to DEF CON.
https://www.nextgov.com/people/2026/02/def

DEF CON bans hackers, technologists named in Epstein documents
Vincenzo Iozzo, Joichi Ito and Pablos Holman are barred from future attendance after Justice Department files revealed their roles in efforts to secure Jeffrey Epstein’s access to DEF CON.

Kremlin-linked hackers pose as charities to spy on Ukraine’s military https://therecord.media/kremlin-linked-hackers-pose-as-charities-spy-ukraine

So much cybersecurity news, so little time. Check out today's Metacurity for a quick run-down of the most crucial infosec developments you should know today, including
--Hackers claim to be selling Target's internal source code,
--Poland thwarted power system cyberattack,
--Hackers accessed the systems of Spanish energy provider Endesa and Energía XXI,
--Personal finance platform Betterment was hacked through third-party,
--Dutch national sentenced to sev…

Hackers claim to be selling Target's internal source code
Poland thwarted power system cyberattack, Hackers accessed the systems of Spanish energy provider Endesa and Energía XXI, Personal finance platform Betterment was hacked through third-party, Dutch national sentenced to seven years for hacking, Korea's Kyowon Group hit with ransomware, much more

Cyera researchers detail Ni8mare, a critical RCE flaw that lets hackers access local instances of the n8n workflow automation platform, impacting ~100K servers (Bill Toulas/BleepingComputer)
https://www.bleepingcomputer.com/news/secur…

How Hackers Are Fighting Back Against ICE
https://www.eff.org/deeplinks/2026/01/how-hackers-are-fighting-back-against-ice

How Hackers Are Fighting Back Against ICE
A few enterprising hackers have started projects to do counter surveillance against ICE, and hopefully protect their communities through clever use of technology.

North Korean hackers targeted crypto exec with fake Zoom meeting, ClickFix scam https://therecord.media/north-korean-hackers-targeted-crypto-exec-clickfix

There is never a shortage of cybersecurity news, even on the weekends, so check out today's Metacurity for the most critical developments you might have missed, including
--Russian hackers target Signal and WhatsApp accounts of officials, journalists, and military,
--DPRK hackers use AI to accelerate and expand their schemes,
--Trump promotes offensive operations in cyber strategy and issues cybercrime EO,
--DHS and Secret Service seek real-time access to travel re…

Russian hackers target Signal and WhatsApp accounts of officials, journalists, and military
DPRK hackers use AI to accelerate and expand their schemes, Trump promotes offensive operations in cyber strategy and issues cybercrime EO, DHS and Secret Service seek real-time access to travel records, Polish hospital hit by 'huge' cyberattack, Chinese spy groups target S. American telcos, more

Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding, Google says https://therecord.media/nation-state-hackers-using-gemini-for-malicious-campaigns

Blockchain-based lending company Figure confirms a data breach; ShinyHunters hacking group published 2.5GB of data, saying Figure refused to pay a ransom (Lorenzo Franceschi-Bicchierai/TechCrunch)
https://techcrunch.com/2026/02/13/fintech-lending-giant-fi…

Fintech lending giant Figure confirms data breach | TechCrunch
The company said hackers downloaded “a limited number of files” after breaking into an employee’s account. The hacking group ShinyHunters took responsibility for the breach.

Check out today's Metacurity for the critical infosec developments you might have missed over the weekend, including
--Black Basta suspects’ homes raided; gang leader added to most-wanted list,
--Jordanian national pleads guilty to access broker charges,
--Acting head of CISA was blocked by colleagues from removing CIO,
--Iranian campaign sought to steal Gmail and other account credentials,
--Man pleads guilty to hacking US S.Ct.,
--DPRK hackers impersona…

Black Basta suspects’ homes raided; gang leader added to most-wanted list
Jordanian national pleads guilty to access broker charges, Acting head of CISA was blocked by colleagues from removing CIO, Iranian campaign sought to steal GMail and other account credentials, Man pleads guilty to hacking US S.Ct., DPRK hackers pose as human rights orgs, much more

Russian Hackers Disable Ukraine’s Reserve Service and Milchat Military Messenger
https://voennoedelo.com/en/posts/id12812-russian-hackers-cripple-ukraine-s-reserve-and-milchat

Russian Hackers Cripple Ukraine’s Reserve+ and Milchat
Russian hackers disable Ukraine’s Reserve+ and Milchat, halting digital military registration and tactical comms after earlier breaches of Sonata and Delta.

Hackers and Trolls Target Wave of ICE Spotting Apps https://www.404media.co/hackers-and-trolls-target-wave-of-ice-spotting-apps/

I fell into it’: ex-criminal hackers urge Manchester pupils to use web skills for good
https://www.theguardian.com/technology/202

‘I fell into it’: ex-criminal hackers urge Manchester pupils to use web skills for good
Initiative aims to identify proficient gamers and coders who can help companies identify flaws in their cybersecurity

Russian hackers attacking European maritime and transport orgs using Microsoft Office exploit https://therecord.media/russian-hackers-microsoft-office-europe

Russian hackers deploy new malware in phishing campaign targeting Ukraine https://therecord.media/russian-ukraine-hackers-malware

Salt Typhoon hackers ‘almost certainly’ in Australia’s critical infrastructure
https://www.smh.com.au/technology/salt-typhoon-hackers-almost-certainly-in-australia-s-critical-infrastructure-20251231-p5nqwn.htm…

Salt Typhoon hackers ‘almost certainly’ in Australia’s critical infrastructure
China’s hacking campaign is one of the most effective long-term espionage moves ever seen, a top cybersecurity figure says.

Before you head out for the weekend, check out today's Metacurity for the most critical infosec developments you should know, including
--Trump officials might boycott RSAC citing Easterly's CEO position,
--Grubhub confirms data breach,
--China's UAT-8837 breached CIC orgs in N. America,
--Hackers exploit top severity flaw in Modular DS WordPress plugin,
--Flaw in MD CPUs exposes secure virtualization environment,
--Gemini 'personal intelli…

Trump officials might boycott RSAC citing Easterly's CEO position
Grubhub confirms data breach, China's UAT-8837 breached CIC orgs in N. America, Hackers exploit top severity flaw in Modular DS WordPress plugin, Flaw in MD CPUs exposes secure virtualization environment, Gemini 'personal intelligence' will scan everything, much more

Italy blames Russia-linked hackers for cyberattacks ahead of Winter Olympics https://therecord.media/italy-blames-russia-linked-hackers-winter-games-cyberattack

LexisNexis says hackers accessed legacy data in contained breach https://therecord.media/lexisnexis-says-hackers-accessed-legacy-data

California city reports ransomware attack as LA transit agency finds ‘unauthorized activity’
https://therecord.media/california-city-reports-ransomware-attack-la-metro

California city reports ransomware attack as LA transit agency finds ‘unauthorized activity’
Foster City warned that it is possible the hackers obtained public information, urging anyone that has done business with the city to change personal passwords and take measures to protect personal data.

With so much going on in the world, check out today's Metacurity for a one-stop run-down of the critical infosec developments you should know, including
--Microsoft took down massive cybercrime platform RedVDS,
--Google's Fast Pair protocol enables hackers to connect with audio accessories,
--Shipping-related firm Bluspark Global patched a raft of flaws,
--Kimwolf botnet may have hit its maximum potential,
--CNIL fined French mobile companies for data bre…

Microsoft took down massive cybercrime platform RedVDS
Google's Fast Pair protocol enables hackers to connect with audio accessories, Shipping-related firm Bluspark Global patched a raft of flaws, Kimwolf botnet may have hit its maximum potential, CNIL fined French mobile companies for data breach, Cyber authorities warn of OT threats, much more

Russian state hackers exploit new Microsoft Office flaw in attacks on Ukraine, EU https://therecord.media/russian-state-hackers-exploit-new-microsoft-flaw

The Fulu Foundation, a group founded by repair advocate and YouTuber Louis Rossmann, which pays out bounties to people who can remove user-hostile features on connected devices, is now offering a potential payout of $10,000 to encourage hackers and tinkerers to disable software features that require Ring devices to send data to Amazon.

A $10K Bounty Awaits Anyone Who Can Hack Ring Cameras to Stop Sharing Data With Amazon
The Fulu Foundation, a nonprofit that pays out bounties for removing user-hostile features, is hunting for a way to keep Ring cameras from sending data to Amazon—without breaking the hardware.

Anti-piracy hackers set sail to save Japan's manga
https://www3.nhk.or.jp/nhkworld/en/news/videos/20260119153657004/

Hackers attempt to extort parents after school refuses to pay ransom fee https://therecord.media/hackers-attempt-to-extort-parents-after-school-refuses-ransom-demand

Canadian investment regulator confirms hackers hit 750,000 investors https://therecord.media/canada-ciro-investing-regulator-confirms-data-breach

You won't want to miss today's insanely packed Metacurity for the latest news across the cybersecurity sectors, including
--Russian space vehicles are tapping comms from key European satellites, report,
--Incognito Market operator sentenced to 30 years,
--CISA silently tweaked CVEs used for ransomware attacks,
--Russian hackers reportedly disabled critical Ukraine military registration platforms,
--Hackers and trolls are targeting ICE spotting apps,

Russian space vehicles are tapping comms from key European satellites, report
Incognito Market operator sentenced to 30 years, CISA silently tweaked CVEs used for ransomware attacks, Russian hackers reportedly disabled critical Ukraine military registration platforms, Hackers and trolls are targeting ICE spotting apps, Coinbase confirms new insider breach, more

"Korea’s Board of Audit and Inspection found that hackers breached all seven public-sector systems tested in a simulated cyberattack, exposing serious weaknesses in the government's protection of large volumes of personal data."

Hackers breach all tested public-sector systems in Korean audit board's simulated cyberattack
Korea’s Board of Audit and Inspection found that hackers breached all seven public-sector systems tested in a simulated cyberattack, exposing serious weaknesses in the government's protection of large volumes of personal data.

"Setting the stage for the crime begins with sophisticated hackers compromising a freight broker’s load board account, which is an online marketplace where trucking loads are listed and bid on. As typical in many data breaches and other cyberattacks, the accounts are compromised through social engineering and spear phishing. After taking over a freight broker’s account, the criminals then post a fraudulent load listing offering an attractive shipment."
How Hackers And Cargo T…

How Hackers And Cargo Thieves Orchestrated The Great Massachusetts Lobster Heist
how cybercriminals and organized cargo thieves stole 40,000 pounds of lobster using hacked load boards, fictitious pickups and sophisticated supply chain attacks.

Notepad hijacked by suspected state-sponsored hackers https://therecord.media/popular-text-editor-hijacked-by-suspected-state-sponsored-hackers

https://www.richardsilverstein.com/2025/12/30/iranian-hackers-break-cell-phone-of-scandal-plagued-netanyahu-aide/
Israeli hacking group Handala exposed dozens of names and phone numbers of Israel’s security detail …

Iranian Hackers Break Cell Phone of Scandal-Plagued Netanyahu Aide – Tikun Olam תיקון עולם إصلاح العالم
Exposing secrets of the Israeli national security state

Hackers are sending snail mail letters to Trezor and Ledger wallet owners
https://coinpedia.org/news/ledger-and-trezor-scam-alert-fake-letters-target-wallet-users/

Ledger and Trezor Scam Alert: Fake Letters Target Wallet Users
In 2026, crypto scams are no longer limited to emails, fake airdrops, or malicious apps. Scammers have taken things a step further by sending physical

Don't miss today's packed Metacurity for the most critical infosec developments you should know, including
--US drops China Telecom, TP-Link router, and other data security bans before trade talks,
--Crypto-funded transactions for human trafficking soared in 2025,
--Prosecutors confirm former defense contractor exec stole and sold spy tools,
--APT hackers use Gemini AI to support all stages of an attack,
--Apple fixes zero-day exploit in sophisticated att…

US drops China Telecom, TP-Link router, and other data security bans before trade talks
Crypto-funded transactions for human trafficking soared in 2025, Prosecutors confirm former defense contractor exec stole and sold spy tools, APT hackers use Gemini AI to support all stages of an attack, Apple fixes zero day exploited in sophisticated attack, much more

Team Cymru warns that a newly identified open-source AI security testing platform called CyberStrikeAI was used by the same threat actor behind a recent campaign that breached hundreds of Fortinet FortiGate firewalls.
https://www.bleepingcomputer.com/news/secu

CyberStrikeAI tool adopted by hackers for AI-powered attacks
Researchers warn that a newly identified open-source AI security testing platform called CyberStrikeAI was used by the same threat actor behind a recent campaign that breached hundreds of Fortinet FortiGate firewalls.

Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild
https://www.wired.com/story/hundreds-of-millions-of-iphones-can-be-hacked-with-a-new-tool-found-in-the-wild/

Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild
A powerful iPhone-hacking technique known as DarkSword has been discovered in use by Russian hackers. It can take over devices running iOS 18 that simply visit infected websites.

Metacurity is the independent, non-hype, non-personality-dependent cybersecurity newsletter that delivers a daily dose of critical developments you need to know.
Check out today's issue, which covers
--CISA warns US infrastructure owners following Russian attack on Poland's power grid,
--Russia throttles Telegram accusing it of failing to protect personal data or combat crime,
--N. Korean hackers targeted crypto company with unique malware and multiple scams,…

CISA warns US infrastructure owners following Russian attack on Poland's power grid
Russia throttles Telegram accusing it of failing to protect personal data or combat crime, N. Korean hackers targeted crypto company with unique malware and multiple scams, Israel claims it foiled hundreds of Iranian cyberattacks, Microsoft issued fixes for six zero day flaws, much more

The UK's NCSC has launched some great ads to get businesses to sign up for its Cyber Essentials certification.
https://www.youtube.com/watch?v=zKggNJSqatI

U.S Strikes Killed Iranian Cyber Chiefs, But The Hacks Continued
https://www.forbes.com/sites/the-wiretap/2026/03/17/us-strikes-killed-iranian-cyber-chiefs-but-the-hacks-continued/

U.S Strikes Killed Iranian Cyber Chiefs, But The Hacks Continued
Iran's hackers have had some successes since some cyber leaders were killed in missile strikes.

OK, this Ukraine service provides both military access to Starlink authorization AND online marriages for civilians? Those are radically different things.
https://caliber.az/en/post/shot-russian-cyberattack-targets-ukraine-s-starlink-author…

SHOT: Russian cyberattack targets Ukraine’s Starlink authorisation service - PHOTO
Russian hackers have infiltrated Ukraine’s government service “Diia,” which Ukrainian military personnel use to authorise Starlink devices, while civilians use it...

Each week, Metacurity is pleased to offer our free and premium subscribers a weekly digest of the best long-form (and longish) infosec-related pieces we couldn't properly fit into our daily news crush.
Check out this week's selection, which includes
--Kids turn from cybercrime to real-world violent thefts,
--How retailers profit from crypto ATM scams,
--Integrated web browsers are insecure out of the box,
--An MIT railroad club led to modern-day hackers,…

Best infosec-related long reads for the weeks of 12/13/25, 12/30/25, and 1/3/26
Kids turn from cybercrime to real-world violent thefts, How retailers profit from crypto ATM scams, Integrated web browsers are insecure out of the box, An MIT railroad club led to modern-day hackers, AI coding tools are susceptible to attacks, LLM guardrails are inherently exploitable

A YouTuber hacked a North Korean military computer, revealing footage of North Korean soldiers captured on webcam
https://www.chosun.com/english/national-en/2026/01/29/PBEH25CATZCELKJLAZRGVBPXFA/

North Korean Hackers' Daily Life Leaked in Video
North Korean Hackers Daily Life Leaked in Video North Korean hackers use AI, VPNs to secure jobs, funneling funds to regime

Apparently ransomware hackers are stealing people now.

India and the EU signed a security and defense pact yesterday, covering a lot of cyber territory. But Intelligence Online says the EU wanted India to rein in its hacking-for-hire industry, which India denies even exists. So that was left out of the deal.

Europe/India • Indian 'hackers for hire' to continue to thrive under Brussels-New Dehli trade deal
The major trade and strategic agreement signed on 27 January between the European Union and India includes a cyber component, which has been subject to a discreet tug-of-war between cyber diplomats