Whats The Hax? 🔒 A Fraud, Infosec, and Security News Aggregator

Cybersecurity News & Threat Intelligence 🛡️

Stay ahead of cyber threats with breaking security news, vulnerability alerts, and expert analysis. Coverage includes ransomware, data breaches, incident response, and cybersecurity best practices.

Thinking Outside The Box: New Attack Surfaces in Sandboxed AI Agents ❧ AI SOC Agent for Clickdetect - Reducing response time ☙ ❧ Facts from the frontline for anyone who wants to poison AI-training web crawlers on a large scale. ❧ I made a program to teach reverse engineering in a gamified style. I really want user input, it is very early into the project ☙ ❧ JPMorgan and ACI Team to Combat Real-Time Payment Fraud ❧ My new favorite AirTag alternative fits perfectly in my wallet - and is seriously durable ☙ ❧ Mentorship Monday - Post All Career, Education and Job questions here! ❧ Nearly half of cybersecurity pros want to quit - here's why ☙ ❧ American utility firm Itron discloses breach of internal IT network ❧ American utility firm Itron discloses breach of internal IT network ☙ ❧ I ran the 20-minute Apple Watch calibration test - and my data got more accurate ❧ Mystery Around Venezuelan Cyberattack Deepens, with New Discovery of "Highly Destructive" Wiper ☙ ❧ Does anyone remember ipstresser.com ? i follow the CASE ❧ Angry Birds Reverse engineering ☙ ❧ Critical bug in CrowdStrike LogScale let attackers access files ❧ Own a Hisense TV? I'd change these expert settings to noticeably improve the picture quality ☙ ❧ Ever wondered how those "weak key" exploits actually work? I made a research tool for it ❧ American utility firm Itron discloses breach of internal IT network ☙ ❧ GopherWhisper: new China-linked APT targets Mongolia with Go-based malware ❧ I'm a security professional in the healthcare industry. AMA about the unique challenges of working in this space. ☙ ❧

Technical Information Security Content & Discussion
Thinking Outside The Box: New Attack Surfaces in Sandboxed AI Agents
Attempting to evade an AI SOC with offensive agents
Large-scale security audit of 1,764 "vibe-coded" apps: 7% have wide-open Supabase DBs, 15% of Bolt apps ship hardcoded API keys, plus IDOR and zero-auth APIs
Media player pivot: How I got back into my own server
Cohere Terrarium (CVE-2026-5752) and OpenAI Codex CLI (CVE-2025-59532): a cross-CVE analysis of AI code sandbox escapes
What Really Happened In There? A Tamper-Evident Audit Trail for AI Agents
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain ...
CVE-2026-34621: Adobe Acrobat Reader zero-day was on VirusTotal for 136 days before Adobe named it a CVE
Thousands of Live Secrets Found Across Four Cloud Development Environments
Pack2TheRoot (CVE-2026-41651): Cross-Distro Local Privilege Escalation Vulnerability
For [Blue|Purple] Teams in Cyber Defence
AI SOC Agent for Clickdetect - Reducing response time
Warning: Deribit silently patches critical security flaws and ghosts the researchers. Can we trust an exchange that hides its vulnerabilities?
I built Rustinel, an open-source EDR-style agent for Windows ETW and Linux eBPF
gentlemen-decryptor: First-ever decryptor for The Gentlemen ransomware — recovers encryption keys from process memory dumps using X25519 ephemeral key extraction. 35/35 files decrypted.
nuitka-static-unpacker: Nuitka Static Unpacker — a static-first research tool for analyzing Nuitka-compiled binaries (constants/module extraction, .pyc recovery, reports).
StegoForge: The ultimate steganography and digital forensics toolkit. Hide and extract data across images, audio, video, documents, and network packets, or run 11 advanced detection engines to uncover hidden payloads.
claude-code-backdoor: Backdooring Claude Code via hooks in settings.json
Beatrice.py: Modify machine code in binaries with alternative x64 assembly opcodes for AV evasion
Launch WSL Applications from Windows with WslLaunch
Atomic BOFs
hacking: security in practice
Facts from the frontline for anyone who wants to poison AI-training web crawlers on a large scale.
Does anyone remember ipstresser.com ? i follow the CASE
Ever wondered how those "weak key" exploits actually work? I made a research tool for it
81 million
would this fall under ethical or unethical hacking and where to acquire?
Getting scammed, can anyone decipher the last part of this code?
how to get access to gpt
Strange machines showing up in njrat
LLM CTF challenges. Try to crack all 13?
Protecting your secrets from tomorrow’s quantum risks
cybersecurity
How do you get into cyber diplomacy / tech policy (without a technical background)?
MCP Safety Warden [Update 1]
Mentorship Monday - Post All Career, Education and Job questions here!
American utility firm Itron discloses breach of internal IT network
What jobs can I do? In this job market, is it looking good?
Should I internally convert to Cybersec from Test Engineering?
Personal Identity, security
Fast16: The Cyberweapon That Predates Stuxnet by Five Years
IT Cybersecurity vs OT Cybersecurity: Best path for a SCADA engineer?
American utility firm Itron discloses breach of internal IT network
Reverse Engineering
I made a program to teach reverse engineering in a gamified style. I really want user input, it is very early into the project
Angry Birds Reverse engineering
Importing GTA IV texture dictionary natively in Unreal
[CrackMe] PyVMP v5 : The Wall. I dare you to break it (again).
Built a tool for reverse-engineering code line-by-line (30+ languages) with vibe code AI Instead of summarizing functions, it explains *each line in context* — useful for:
Claude APK reverse engineering
NEC V810 and V830 (V800 family) CPU Definition module for Ghidra
Detect Shulfar Malware Encrypted TCP C&C Traffic Using PacketSmith Yara-X Detection Module
SentinelLABS just cracked a 20-year-old mystery: Fast16, a state-grade sabotage tool that predates Stuxnet by five years
Built a forensic tool that detects and extracts payloads hidden in ELF/PE slack space — with visual diff heatmaps showing exactly what changed
Fraud Prevention Archives | PYMNTS.com
JPMorgan and ACI Team to Combat Real-Time Payment Fraud
ACI Worldwide and JPMorgan Chase have launched a partnership to combat payment fraud. The collaboration, announced Friday (April 24), will see JPMorgan
Fraudsters Hack the Signals Behind Identity Trust
Watch more: The Digital Shift With Regula’s Henry Patishman The cybersecurity arms race, true to its name, is turning into a sprint. Malware evolves by
IMF Says AI Can Win Fraud Fight if Banks Start Sharing Data
In today’s interconnected financial system, digital vulnerabilities do not remain localized. They propagate. Fraudsters now operate with the speed, scale
Embedded Payments Make Fraud Harder to See and Faster to Hit
Watch more: Need to Know With WEX’s Eric Frankovic Embedded payments are altering how money moves through digital commerce, but the same design that
68% of Banks Increase Fraud Defense Spending as Account Takeovers Spike
Banks are learning that fraud defense is no longer just about stopping losses after the fact. The bigger shift in the latest data is that many
Visa Wants Fraudsters to Pick Another Business
Watch more: Visa Wants Fraudsters to Pick Another Business As payments move deeper into the artificial intelligence economy, fraud is evolving alongside
New Nacha Rules Drive Banks Toward Real-Time Fraud Detection
The March Nacha deadline that has just passed, and the June deadline that follows, are spurring banks to replace static fraud controls with continuous
Visa Says AI Isn’t Enough to Stop New Wave of Scams
Watch more: Visa Protect With Aman Cheema In financial services, deception travels as quickly as money itself, forcing financial institutions to confront
Marqeta Debut Decision Tools as Fraud Threats Increase
Card issuing platform Marqeta has debuted a tool designed to combat increasingly sophisticated payments fraud. The company on Tuesday (March
Fraud Is Knocking Louder on the CFO’s Door
B2B CFOs sit at the increasingly complex intersection of treasury, technology, vendor management and enterprise risk. But that’s not all that finance
Latest news
My new favorite AirTag alternative fits perfectly in my wallet - and is seriously durable
The UAG Metropolis tracker is an AirTag wallet alternative that's highly functional, and all my bending and flexing haven't fazed it.
Nearly half of cybersecurity pros want to quit - here's why
Research suggests security specialists around the globe are unhappy, but there is hope.
I ran the 20-minute Apple Watch calibration test - and my data got more accurate
Want more accurate, personalized health data during your exercises? Here's how to calibrate your Apple Watch.
Own a Hisense TV? I'd change these expert settings to noticeably improve the picture quality
New Hisense TVs look great right out of the box, but you can get more out of your screen by tweaking just a few menu options.
Framework Laptop 13 Pro vs. MacBook Neo: These Windows rivals are more similar than expected
Framework's sleek new Laptop 13 Pro is built for power users, but it shares similar ambitions to the Neo: Windows users seeking alternatives.
I bought a $40 earwax camera and keep finding reasons to use it
The Bebird Earsight Plus D39R earwax removal tool is a surprisingly useful inspection camera. Here's how I use it in my tool shed.
How to audit what ChatGPT knows about you - and reclaim your data privacy
If you're looking to limit the amount of personal information you give ChatGPT, these are the main settings you should know about.
I've tested Sony headphones for years, and these tweaks get me the best audio - always
Sony's headphones and earbuds are full of software features, but finding the tips that work for you can be daunting. These reminders can help.
I'm not giving up on DJI cameras yet - not when they can upset my GoPro like this
The DJI Osmo Nano is modular, powerful, and everything I need for recording my adventures.
I saw the 'MacBook Pro for Linux users' for the first time, and it's a legit Windows threat
The latest Framework Laptop 13 Pro is an ultraportable device that's both modular and premium. But is there a market for it?
Security Affairs
Critical bug in CrowdStrike LogScale let attackers access files
CrowdStrike fixed CVE-2026-40050 in LogScale self-hosted, a critical flaw allowing unauthenticated file access via path traversal.
GopherWhisper: new China-linked APT targets Mongolia with Go-based malware
ESET found a new China-linked APT, GopherWhisper, targeting Mongolia using Go-based malware, loaders, and backdoors.
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 94
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape
Trigona ransomware adopts custom tool to steal data and evade detection
Trigona ransomware now uses a custom command-line tool to steal data faster and evade detection, replacing tools like Rclone and MegaSync.
Security Affairs newsletter Round 574 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs.
U.S. CISA adds SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities catalog
The U.S. CISA added SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities (KEV) catalog.
Over 400,000 sites at risk as hackers exploit Breeze Cache plugin flaw (CVE-2026-3844)
Attackers exploit a Breeze Cache flaw (CVE-2026-3844) to upload files without login. Wordfence researchers detected over 170 attacks.
CISA reports persistent FIRESTARTER backdoor on Cisco ASA device in federal network
CISA said a federal Cisco Firepower ASA device was infected with the FIRESTARTER backdoor in Sept 2025, and it survived security patches.
12-year-old Pack2TheRoot bug lets Linux users gain root privileges
'Pack2TheRoot' flaw lets local Linux users gain root via PackageKit. CVE-2026-41651 (8.8) has existed for nearly 12 years.
Signal phishing campaign targets Germany’s Bundestag President Julia Klöckner
Germany’s Bundestag President Klöckner was targeted in a Signal phishing attack via a fake CDU group chat.
BleepingComputer
American utility firm Itron discloses breach of internal IT network
Itron, Inc. has disclosed, via an 8-K filing with the U.S. Securities and Exchange Commission (SEC), a cybersecurity incident in which an unauthorized third party accessed certain ...
Microsoft rolls out revamped Windows Insider Program
Microsoft says it's rolling out a revamped Windows Insider Program experience as part of the broader plans to address performance and reliability concerns affecting Windows 11.
Threat actor uses Microsoft Teams to deploy new “Snow” malware
A threat group tracked as UNC6692 uses social engineering to deploy a new, custom malware suite named 'Snow' which includes a browser extension, a tunneler, and a backdoor.
ADT confirms data breach after ShinyHunters leak threat
Home security giant ADT has confirmed a data breach after the ShinyHunters extortion group threatened to leak stolen data unless a ransom is paid.
Firestarter malware survives Cisco firewall updates, security patches
Cybersecurity agencies in the U.S. and U.K. are warning about a custom malware called Firestarter persisting on Cisco Firepower and Secure Firewall devices running Adaptive Securit...
Windows Update gets new controls to reduce forced restarts
Microsoft is rolling out Windows Update improvements that give users more control over how updates are installed while reducing disruption from frequent or poorly timed restarts.
New BlackFile extortion group linked to surge of vishing attacks
A new financially motivated hacking group tracked as BlackFile has been linked to a wave of data theft and extortion attacks against retail and hospitality organizations since Febr...
Microsoft to roll out Entra passkeys on Windows in late April
Microsoft will roll out passkey support for phishing-resistant passwordless authentication to Microsoft Entra‑protected resources from Windows devices starting late April.
New ‘Pack2TheRoot’ flaw gives hackers root Linux access
A new vulnerability dubbed Pack2TheRoot could be exploited in the PackageKit daemon to allow local Linux users to install or remove system packages and gain root permissions.
DORA and operational resilience: Credential management as a financial risk control
Article 9 of DORA makes authentication and access control a legal obligation for EU financial entities. Here is what the regulation requires, and what a breach looks like when thos...
MSRC Security Update Guide
CVE-2026-23372 nfc: rawsock: cancel tx_work before socket teardown
CVE-2026-23371 sched/deadline: Fix missing ENQUEUE_REPLENISH during PI de-boosting
CVE-2026-23370 platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data
CVE-2026-23368 net: phy: register phy led_triggers during probe to avoid AB-BA deadlock
CVE-2026-23367 wifi: radiotap: reject radiotap with unknown bits
CVE-2026-23365 net: usb: kalmia: validate USB endpoints
CVE-2026-23364 ksmbd: Compare MACs in constant time
CVE-2026-23362 can: bcm: fix locking for bcm_op runtime updates
CVE-2026-31656 drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat
CVE-2026-23361 PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry
Help Net Security
Week in review: Claude Mythos finds 271 Firefox flaws, Vercel breach
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: SmokedMeat: Open-source tool shows what attackers do
Users advised to drop passwords and make room for passkeys
Passkey adoption is being prioritized in cybersecurity strategies as organizations move to eliminate weak password-based logins.
Indirect prompt injection is taking hold in the wild
Google and Forcepoint researchers searched for indirect prompt injection attacks mounted by attackers in the wild.
Compromised everyday devices power Chinese cyber espionage operations
An NCSC advisory warns that China-linked cyber groups are using covert networks of compromised devices to scale cyber operations.
New Cisco firewall malware can only be killed by pulling the plug
Suspected state-sponsored attackers are using the Firestarter backdoor to persistently compromise Cisco Firepower devices.
Meta is overhauling how you sign in, manage settings, and protect your accounts
Meta Account unifies access, security, and settings across Meta apps and devices, with optional WhatsApp integration and centralized control.
Ubuntu 26.04 LTS delivers memory-safe system tools and live patching for Arm servers
Linux distributions have spent the past few years absorbing GPU vendor toolchains, Rust-based system components, and more stringent encryption defaults.
OpenAI’s GPT-5.5 is out with expanded cybersecurity safeguards
OpenAI’s GPT-5.5 adds stronger cybersecurity controls and improved performance, as more capable AI models raise new security risks.
AI is speeding up nation-state cyber programs
Microsoft's Kaja Ciglic on how nation state cyber programs now drive sanctions evasion, crime, and statecraft across global security fronts.
A study of 1,000 Android apps finds a privacy policy logging gap
Study of 1,000 apps reveals a major Android privacy policy logging gap, with only 4 apps disclosing what their logs actually collect.
Security Latest
California Engineer Identified in Suspected Shooting at White House Correspondents’ Dinner
A 31-year-old engineer and self-described indie game developer is suspected of firing shots at the annual event attended by President Donald Trump, high-profile media figures, and ...
Discord Sleuths Gained Unauthorized Access to Anthropic’s Mythos
Plus: Spy firms tap into a global telecom weakness to track targets, 500,000 UK health records go up for sale on Alibaba, Apple patches a revealing notification bug, and more.
The Latest Push to Extend Key US Spy Powers Is Still a Mess
A US surveillance program that lets the FBI view Americans’ communications without a warrant is up for renewal. A new bill aims to address mounting lawmaker concerns—with smoke and...
Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet
Researchers have finally cracked Fast16, mysterious code capable of silently tampering with calculation and simulation software. It was created in 2005—and likely deployed by the U...
AI Tools Are Helping Mediocre North Korean Hackers Steal Millions
One group of hackers used AI for everything from vibe coding their malware to creating fake company websites—and stole as much as $12 million in three months.
Mozilla Used Anthropic’s Mythos to Find and Fix 271 Bugs in Firefox
The Firefox team doesn’t think emerging AI capabilities will upend cybersecurity long term, but they warn that software developers are likely in for a rocky transition.
Meta Is Sued Over Scam Ads on Facebook and Instagram
A lawsuit from the Consumer Federation of America accuses Meta of misleading consumers about its efforts to combat scams advertisements on its platforms.
They Built a Legendary Privacy Tool. Now They’re Sworn Enemies
There’s a lot of love all over the world for GrapheneOS, the gold standard of mobile security. There’s very little love between the two guys at the center of its history.
The Weird, Twisting Tale of How China Spied on Alysa Liu and Her Dad
Years before the figure skater became an Olympic superstar, a Chinese operative tried to stalk her father and monitored other US residents deemed dissidents against China. And that...
It Takes 2 Minutes to Hack the EU’s New Age-Verification App
Plus: Major data breaches at a gym chain and hotel giant, a disruptive DDoS attack against Bluesky, dubious ICE hires, and more.
Malware Analysis & Reports
New Lazarus APT Campaign: “Mach-O Man” macOS Malware Kit Hits Businesses
Save time and use Zig to write your Malware POC
Cracking CastleLoader’s Inno Setup Password
I built a C2 framework that uses Discord and Telegram for communication
fast16 | Mystery ShadowBrokers Reference Reveals High-Precision Software Sabotage 5 Years Before Stuxnet.
Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet
PSA: awstore.cloud is a MALICIOUS fake Claude API provider - warn your fellow devs
Budgiekit - gdi malware maker (for educational purporses only)
19 confirmed repos tied to the same GitHub malware campaign
IOCX v0.7.0 — deterministic heuristics + adversarial PE samples
SecurityWeek
China-Linked APT GopherWhisper Abuses Legitimate Services in Government Attacks
The China-linked APT GopherWhisper has been using legitimate services and various Go-based backdoors in attacks.
Pre-Stuxnet Sabotage Malware ‘Fast16’ Linked to US-Iran Cyber Tensions
The Fast16 sabotage malware targeted high-precision computing workloads and could propagate through entire facilities.
In Other News: Unauthorized Mythos Access, Plankey CISA Nomination Ends, New Display Security Device
Supreme Court hacker sentenced, Lovable exposed user data, Google expands enterprise security in Chrome and Android.
Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents
By anchoring AI security within identity threat detection and risk mitigation frameworks, organizations can protect against rogue agents.
Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in World’s Biggest Exercise
The world’s largest cyber defense exercise, Locked Shields 2026, brings together more than 4,000 participants from 41 nations. 
US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor
At least one US federal agency was infected with the Firestarter backdoor in a China-linked campaign targeting Cisco firewalls.
Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US
The Trump administration is vowing to crack down on foreign tech companies’ exploitation of US AI models, singleling out China.
Vulnerabilities Patched in CrowdStrike, Tenable Products
CrowdStrike and Tenable informed customers this week about potentially serious vulnerabilities found and patched in their products.
Bitwarden NPM Package Hit in Supply Chain Attack
The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.
Copperhelm Raises $7 Million for Agentic Cloud Security Platform
Israel-based Copperhelm emerged from stealth mode, having raised $7 million in seed funding for its agentic cloud security platform.
The Hacker News
Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software
Fast16 malware from 2005 predates Stuxnet by five years, targeting engineering software to sabotage calculations and reshape cyberwar history.
CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline
CISA adds 4 exploited CVEs including CVSS 9.9 SimpleHelp flaw, mandating FCEB mitigation by May 8, 2026 to reduce ransomware and botnet risk.
FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches
FIRESTARTER backdoor hit Cisco ASA in Sept 2025, persists after patching CVE-2025-20333, risking continued federal network access.
NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software
NASA OIG exposed a 2017–2021 spear-phishing campaign by Song Wu, leading to DOJ charges and export control violations.
Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine
AI agents inherit hidden authority from fragmented identities, creating a delegation gap that demands real-time governance.
26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases
26 FakeWallet apps since fall 2025 hijack crypto recovery phrases via Apple App Store China accounts, enabling wallet theft.
Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2
Tropic Trooper used trojanized SumatraPDF and GitHub C2 in 2024 to deploy AdaptixC2, enabling covert VS Code tunnel access.
LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure
CVE-2026-33626 exploited within 13 hours of disclosure, enabling SSRF-based cloud credential theft and internal scanning.
UNC6692 Impersonates IT Help Desk via Microsoft Teams to Deploy SNOW Malware
UNC6692 targeted 77% senior employees between March 1–April 1, 2026, via Teams impersonation, enabling malware, data theft.
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign
Bitwarden CLI 2026.4.0 was compromised via GitHub Actions in Checkmarx campaign, exposing secrets and distributing malicious npm code
darkreading
Helping Romance Scam Victims Require a Proactive, Empathic Approach
Organizations are changing how they support victims of romance scams - with empathy, technology, and teamwork.
US Busts Myanmar Ring Targeting US Citizens in Financial Fraud
Some 29 people were charged, including a Cambodian senator, and authorities seized more than 500 Web domains tied to fake investment sites.
Glasswing Secured the Code. The Rest of Your Stack Is Still on You
Forgotten integrations, shadow IT, SaaS, and now shadow AI and agents are everywhere, and attackers don't need sophisticated AI models to take advantage.
AI Phishing Is No. 1 With a Bullet for Cyberattackers
Companies are seeing a significant influx of AI-powered phishing, as cyberattackers progress from small campaigns to 1-to-1 personalized attacks.
North Korea's Lazarus Targets macOS Users via ClickFix
Lazarus continues leveraging ClickFix for initial access and data theft, in this case, against Mac-centric organizations and their high-value leaders.
Tropic Trooper APT Takes Aim at Home Routers, Japanese Targets
The Chinese state-sponsored cyber threat is known for moving fast and trying odd attack vectors; now it's branching out in tools, victimology, and TTPs.
Chinese APT Abuses Multiple Cloud Tools to Spy on Mongolia
The threat actor gave itself plenty of options to support command and control, tapping Microsoft Outlook, Slack, Discord, and file.io for online espionage.
China-Backed Hackers Are Industrializing Botnets
China's state-backed groups are now using covert networks of compromised devices to execute attacks in a low-cost, low-risk, and deniable way.
Bad Memories Still Haunt AI Agents
Anthropic fixed a significant vulnerability in Claude Code's handling of memories, but experts caution that memory files will continue to be an AI threat.
'Zealot' Shows What AI's Capable of in Staged Cloud Attack
The proof of concept revealed AI-based attacks unfold too fast for human defenders to respond, and that AI evinced more autonomous behavior than expected.
Schneier on Security
Friday Squid Blogging: How Squid Survived Extinction Events
Science news: Scientists have finally cracked a long-standing mystery about squid and cuttlefish evolution by analyzing newly sequenced genomes alongside global datasets. The resea...
Hiding Bluetooth Trackers in Mail
It was used to track a Dutch naval ship: Dutch journalist Just Vervaart, working for regional media network Omroep Gelderland, followed the directions posted on the Dutch governmen...
FBI Extracts Deleted Signal Messages from iPhone Notification Database
404 Media reports (alternate site): The FBI was able to forensically extract copies of incoming Signal messages from a defendant’s iPhone, even after the app was deleted, because c...
ICE Uses Graphite Spyware
ICE has admitted that it uses spyware from the Israeli company Graphite.
Mexican Surveillance Company
Grupo Seguritech is a Mexican surveillance company that is expanding into the US.
Is “Satoshi Nakamoto” Really Adam Back?
The New York Times has a long article where the author lays out an impressive array of circumstantial evidence that the inventor of Bitcoin is the cypherpunk Adam Back. I don’t kno...
Friday Squid Blogging: New Giant Squid Video
Pretty fantastic video from Japan of a giant squid eating another squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t co...
Mythos and Cybersecurity
Last week, Anthropic pulled back the curtain on Claude Mythos Preview, an AI model so capable at finding and exploiting software vulnerabilities that the company decided it was too...
Human Trust of AI Agents
Interesting research: “Humans expect rationality and cooperation from LLM opponents in strategic games.” Abstract: As Large Language Models (LLMs) integrate into our social and eco...
Defense in Depth, Medieval Style
This article on the walls of Constantinople is fascinating. The system comprised four defensive lines arranged in formidable layers: The brick-lined ditch, divided by bulkheads and...
CyberScoop
Latest spy power reauthorization bill leaves critics unimpressed
The latest attempt to re-up a controversial expiring surveillance law has failed to placate vocal critics on both the left and right of the political spectrum.
Vercel attack fallout expands to more customers and third-party systems
The company said it found more evidence of compromise across its customer base. Exposure, which has yet to be defined, poses significant downstream risk.
US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied
"CISA and the NCSC warn of 'Firestarter,' a persistent Cisco firewall backdoor that survives patches. Authorities mandate hard reboots and device reimaging to eliminate the threat....
Dragos: Despite AI use, new malware targeting water plants is ‘hype’
ZionSiphon was designed to find and sabotage Israelis’ water supply. An OT expert said it appears to be ineffective and the work of amateurs using AI.
Surveillance campaigns use commercial surveillance tools to exploit long-known telecom vulnerabilities
Citizen Lab reveals how surveillance vendors exploit mobile network signaling protocols like SS7 and Diameter to track targets, highlighting severe global telecom risks.
A dozen allied agencies say China is building covert hacker networks out of everyday routers
Global agencies issue a major warning on China-nexus covert networks, as hackers shift tactics to exploit SOHO routers and IoT devices to target infrastructure.
CISA director pick Sean Plankey withdraws his nomination
Sean Plankey, the long-sidelined nominee to lead the Cybersecurity and Infrastructure Security Agency, asked President Donald Trump on Wednesday to withdraw his nomination.
House Republicans roll out national privacy bill
Experts say the federal legislation takes inspiration from states laws in Virginia and Kentucky, but a lack of bipartisan support could spell trouble. 
The Supreme Court is about to decide how far geofence warrants can go
The Supreme Court will hear arguments in Chatrie v. United States, a landmark case examining whether geofence warrants violate Fourth Amendment digital privacy rights.
The AI era demands a different kind of CISO
Static audits can’t stop AI-speed attacks. Rinki Sethi argues why CISOs must shift from periodic compliance to real-time risk awareness to survive the modern threat landscape.
Security at the speed of business – India | CSO Online
New US House privacy bills raise hard questions about enterprise data collection
The SECURE Data Act and GUARD Financial Data Act are unlikely to pass, but they preview the privacy fights CIOs, CISOs, and CFOs will face anyway: data minimization, AI profiling, ...
Scattered Spider co-conspirator pleads guilty
One more down, but other members of phishing gang are still active.
CISA last in line for access to Anthropic Mythos
The security agency is reportedly still waiting for access to the AI model Anthropic fears could upset the cybersecurity power balance, while unauthorized users are already having ...
Security-KPIs und -KRIs: So messen Sie Cybersicherheit
Wenn CISOs an ihre Vorgesetzten reporten, sollten daraus sinnvolle und umsetzbare Maßnahmen erwachsen können.
Bitwarden CLI password manager trojanized in supply chain attack
Attackers published a malicious command-line version of the popular open-source password manager to the npm registry and may be behind a spate of recent supply chain attacks.
3 practical ways AI threat detection improves enterprise cyber resilience
Discover how to integrate automation to secure your infrastructure before and after an attack.
The curious case of Sean Plankey’s derailed CISA nomination
Sean Plankey backed out of his CISA director nomination, but why he faced resistance is not a straightforward story.
Offer customers passkeys by default, UK’s NCSC tells enterprises
Developers of enterprise apps and websites will need to get to grips with passkeys: The UK's National Cyber Security Center the agency recommends them for their resistance to phish...
Google drafts AI agents to secure systems against AI hackers
At Cloud Next ‘26, Google introduced AI-driven security agents, Wiz-powered multicloud protection, and new controls to secure the growing AI attack surface.
Microsoft taps Anthropic’s Mythos to strengthen secure software development
The move is a clear signal that powerful AI models are making inroads into real software security work.
The Record from Recorded Future News
Iran’s cyber threat may be less ‘shock and awe’ than ‘low and slow,’ officials say
Officials and experts believe the most likely threat from Iranian hackers is not a digital shock-and-awe campaign, but something quieter: opportunistic intrusions, dressed up to lo...
ADT says customer data stolen in cyber intrusion
The home security company ADT said cybercriminals breached company systems on Monday and stole a “limited set” of customer and prospective customer information.
Pentagon grapples with securing AI as it moves toward autonomous warfare
Autonomous weapons are becoming an "essential" part of modern war, Chairman of the Joint Chiefs of Staff Gen. Dan Caine told an audience at Vanderbilt University’s Asness Summit on...
Norway's prime minister proposes ban on social media access for young teens
An upcoming proposed bill will include language that holds big tech accountable for using age verification tools to block young users.
Toronto police arrest three in Canada’s first mobile SMS blaster case
Canadian police arrested three men over the use of a mobile “SMS blaster,” a device capable of impersonating a cellular tower to send mass phishing messages and disrupt mobile netw...
Security - Ars Technica
Why are top university websites serving porn? It comes down to shoddy housekeeping.
Hundreds of subdomains from dozens of universities have been hijacked by scammers.
In a first, a ransomware family is confirmed to be quantum-safe
Technically speaking, there's no practical benefit to use PQC. So why is it being used?
Crypto scam lures ships into Strait of Hormuz, falsely promising safe passage
Ship attacked by Iran after possibly falling for safe passage crypto scam.
Microsoft issues emergency update for macOS and Linux ASP.NET threat
When authentication fails, things can go very, very wrong.
Mozilla: Anthropic's Mythos found 271 security vulnerabilities in Firefox 150
CTO says new AI model is "every bit as capable" as world's best security researchers.
Contrary to popular superstition, AES 128 is just fine in a post-quantum world
A stubborn misconception is hampering the already hard work of quantum readiness.
US-sanctioned currency exchange says $15 million heist done by "unfriendly states"
Grinex says needed hacking resources "available exclusively to... unfriendly states."
Recent advances push Big Tech closer to the Q-Day danger zone
Here's which players are winning the race to transition to post-quantum crypto.
"TotalRecall Reloaded" tool finds a side entrance to Windows 11's Recall database
The vault is solid. The delivery truck is not."
UK gov's Mythos AI tests help separate cybersecurity threat from hype
New model is the first AI system to complete a difficult multistep infiltration challenge.
Cybersecurity News
Netherlands Faces Greatest National Security Threat Since World War Two
Dutch intelligence agency AIVD claims the Netherlands is facing the greatest national security threat its seen since World War Two, predominantly citing threats from Russia and Chi...
Security Leaders Discuss the Claude Mythos Breach
As information on the reported Claude Mythos breach continues to roll out, security leaders are discussing their concerns, the industry’s next steps and more.
NIST’s New Prioritization Criteria for CVEs, Examined by Experts
NIST recently changed to how it handles CVEs. Experts are sharing their insights.
Unauthorized Users Accessed Claude Mythos, New Reports Suggest
Recent reports suggest an unauthorized group may have gained access to Anthropic’s new AI model, Claude Mythos Preview. Due to the model's elevated capability to identify digital v...
Hackers Claim 19M Records Stolen From French Government Agency
The France Titres discovered a security incident. 
Security Leaders Discuss the Vercel Breach
Following the news of the Vercel data breach, security experts are discussing implications, sharing their insights, and weighing in on what this incident suggests about the future ...
US Security Agency Leverages Claude Mythos Despite Pentagon Blacklist
Reports suggest that the NSA is using Claude Mythos although the Pentagon has placed a formal supply-chain risk designation on Anthropic.
Vercel Breach Originated From an Employee’s AI Tool
Vercel, a web infrastructure provider, confirmed its data has been breached. This breach occurred due to a third-party artificial intelligence (AI) tool deployed by an employee.
58% of Organizations Spend Over 10 Hours a Month Securing AI-generated Code
A recent report by Cloudsmith found that 31% of organizations using AI-generated code spend 10 hours or less per month validating, auditing, or securing it.
Top 3 Cyber Insurance Incident Claims
Security leaders share their insights on the top three cyber incidents that account for a majority of reported claims. 
Cisco Security Advisory
Continued Evolution of Persistence Mechanism Against Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense
On April 23, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an update to V1: Emergency Directive (ED) 25-03: Identify and Mitigate Potential Compromi...
Cisco ACI Multi-Site CloudSec Encryption Information Disclosure Vulnerability
A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to re...
Cisco Integrated Management Controller Cross-Site Scripting Vulnerabilities
Multiple vulnerabilities in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow a remote attacker to conduct a cross-site scripting (XSS)...
Cisco Integrated Management Controller Command Injection and Remote Code Execution Vulnerabilities
Multiple vulnerabilities in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to execute arbitrary co...
Cisco Catalyst SD-WAN Vulnerabilities
Multiple vulnerabilities in Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an attacker to access an affected system, elevate privileges to root, gain access to...
Cisco Webex Services Certificate Validation Vulnerability
A vulnerability in the integration of single sign-on (SSO) with Control Hub in Cisco Webex Services could have allowed an unauthenticated, remote attacker to impersonate any user w...
Cisco Secure Web Appliance Authentication Bypass Vulnerability
A vulnerability in the authentication service feature of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to bypass authenticat...
Cisco Identity Services Engine Remote Code Execution and Path Traversal Vulnerabilities
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker to achieve remote ...
Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability
A vulnerability in the CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, local attacker with administrati...
Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative write privi...
infosecurity-magazine.com
UK Biobank Data Breach: Health Data of 500,000 Listed for Sale in China
UK government Minister confirms that breached health records of UK Biobank volunteers were up for sale on Chinese ecommerce platforms before being removed
AI Rush is Reviving Old Cybersecurity Mistakes, Mandiant VP Warns
AI tools are not just creating new vulnerabilities, they are reviving old security failures, warned Jurgen Kutscher, VP of Mandiant Consulting
Npm Supply Chain Malware Attack Targets Developers With Worm-Like Propagation
Malicious npm packages spread via worm-like propagation and steal developer credentials
Google Favors General-Purpose Gemini Models Over Cybersecurity‑Specific AI
Google Cloud’s COO advocated for combining general-purpose frontier large language models with task-specific AI agents
Apple Fixes iOS Notification Bug Exposing Deleted Messages
Apple patches iOS flaw that retained deleted notifications, exposing message data
Google Introduces Unique AI Agent Identities in New Gemini Enterprise Platform
Google Cloud will attribute a unique cryptographic ID every AI agent that will be tied to “traceable and auditable” authorization policies
Cyber-Attacks Surge 63% Annually in Education Sector
Quorum Cyber report finds higher and further education institutions experienced 63% increase in attacks over a year
Researchers Uncover 10 In-the-Wild Prompt Injection Payloads Targeting AI Agents
Forcepoint has found 10 new indirect prompt injection payloads targeting AI agents
NCSC Backs Passkeys, Hailing a New Era of Sign-in
The UK’s NCSC has fully backed passkeys as consumers’ first choice for login, citing progress with FIDO and successful use across the NHS
MacOS Native Tools Enable Stealthy Enterprise Attacks
macOS LOTL techniques bypass detection using native tools and metadata abuse
Malwarebytes
Medical data of 500,000 UK volunteers listed for sale on Alibaba
Despite strict access controls, medical data from half a million UK Biobank volunteers ended up listed for sale on Alibaba.
How cyberattacks on companies affect everyone
We look at how cybercrime targeting companies affects all of us, especially their customers.
Apple fixes iOS bug that kept deleted notifications, including chat previews
A vulnerability in iPhones and iPads allowed law enforcement to recover deleted notifications, including Signal message previews.
Roblox clamps down on chats and age checks as legal pressure builds
Roblox is paying millions to settle child safety claims while rolling out strict age checks and chat limits that could reshape how kids use the platform.
Malicious trading website drops malware that hands your browser to attackers
A fake TradingView AI agent site leads to malware that can take over your browser, steal your accounts and financial data, and open the door to further attacks.
Researcher claims Claude Desktop installs “spyware” on macOS
A security researcher claims Claude Desktop installed spyware on his Mac. We examine the findings.
Fake Google Antigravity downloads are stealing accounts in minutes
Another AI launch, another trap. A trojanized Google Antigravity installer runs like normal, but secretly hands over your accounts to the attackers.
Real Apple notifications are being used to drive tech support scams
Scammers have found a way to abuse legitimate Apple notification emails to trick people into calling fake tech support numbers.
Android 17 ends all-or-nothing access to your contacts
Apps have been taking your whole contact list for years. Android 17 finally makes them ask for less.
Big Tech can stop scams. They just don’t (Lock and Code S07E08)
This week on the Lock and Code podcast, we speak with Marti DeLiema about what really works in protecting older adults from financial scams.
Alerts
CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds Eight Known Exploited Vulnerabilities to Catalog
​​Supply Chain Compromise Impacts Axios Node Package Manager​
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Seven Known Exploited Vulnerabilities to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
All CISA Advisories
CISA Adds Four Known Exploited Vulnerabilities to Catalog
Carlson Software VASCO-B GNSS Receiver
Hangzhou Xiongmai Technology Co., Ltd XM530 IP Camera
CISA Adds One Known Exploited Vulnerability to Catalog
FIRESTARTER Backdoor
Yadea T5 Electric Bicycle
Defending Against China-Nexus Covert Networks of Compromised Devices
Milesight Cameras
SpiceJet Online Booking System
Intrado 911 Emergency Gateway (EGW)
WeLiveSecurity
The calm before the ransom: What you see is not all there is
A breach claims the systems as well as the quiet confidence that was, in retrospect, a major vulnerability.
GopherWhisper: A burrow full of malware
ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions.
New NGate variant hides in a trojanized NFC payment app
ESET researchers discover another iteration of NGate malware, this time possibly developed with the assistance of AI.
What the ransom note won’t say
Viewing ransomware only as an attack produces defenses built against attacks. But think about ransomware as an industry and additional priorities come into focus.
That data breach alert might be a trap
Ignoring a real breach notification invites risk, but falling for a bogus one could be even worse. Stop reacting on autopilot.
Supply chain dependencies: Have you checked your blind spot?
Your biggest risk may be a vendor you trust. How can SMBs map their third-party blind spots and build operational resilience?
Recovery scammers hit you when you’re down: Here’s how to avoid a second strike
If you’ve been the victim of fraud, you’re likely already a lead on a ‘sucker list’ – and if you’re not careful, your ordeal may be about to get worse.
As breakout time accelerates, prevention-first cybersecurity takes center stage
Threat actors are using AI to supercharge tried-and-tested TTPs. When attacks move this fast, cyber-defenders need to rethink their own strategy.
Digital assets after death: Managing risks to your loved one’s digital estate
Fraudsters often target the accounts of the deceased or their grieving relatives. Here’s how to keep the scammers at bay.
This month in security with Tony Anscombe – March 2026 edition
March saw a slew of new cybersecurity wake-up calls that showed the need for well-thought-out cyber-resilience plans
WeLiveSecurity
The calm before the ransom: What you see is not all there is
A breach claims the systems as well as the quiet confidence that was, in retrospect, a major vulnerability.
GopherWhisper: A burrow full of malware
ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions.
New NGate variant hides in a trojanized NFC payment app
ESET researchers discover another iteration of NGate malware, this time possibly developed with the assistance of AI.
What the ransom note won’t say
Viewing ransomware only as an attack produces defenses built against attacks. But think about ransomware as an industry and additional priorities come into focus.
That data breach alert might be a trap
Ignoring a real breach notification invites risk, but falling for a bogus one could be even worse. Stop reacting on autopilot.
Supply chain dependencies: Have you checked your blind spot?
Your biggest risk may be a vendor you trust. How can SMBs map their third-party blind spots and build operational resilience?
Recovery scammers hit you when you’re down: Here’s how to avoid a second strike
If you’ve been the victim of fraud, you’re likely already a lead on a ‘sucker list’ – and if you’re not careful, your ordeal may be about to get worse.
As breakout time accelerates, prevention-first cybersecurity takes center stage
Threat actors are using AI to supercharge tried-and-tested TTPs. When attacks move this fast, cyber-defenders need to rethink their own strategy.
Digital assets after death: Managing risks to your loved one’s digital estate
Fraudsters often target the accounts of the deceased or their grieving relatives. Here’s how to keep the scammers at bay.
This month in security with Tony Anscombe – March 2026 edition
March saw a slew of new cybersecurity wake-up calls that showed the need for well-thought-out cyber-resilience plans
SANS Internet Storm Center, InfoCON: green
ISC Stormcast For Friday, April 24th, 2026 https://isc.sans.edu/podcastdetail/9906, (Fri, Apr 24th)
ISC Stormcast For Friday, April 24th, 2026 https://isc.sans.edu/podcastdetail/9906, Author: Johannes Ullrich
Apple Patches Exploited Notification Flaw, (Thu, Apr 23rd)
Apple Patches Exploited Notification Flaw, Author: Johannes Ullrich
ISC Stormcast For Thursday, April 23rd, 2026 https://isc.sans.edu/podcastdetail/9904, (Thu, Apr 23rd)
ISC Stormcast For Thursday, April 23rd, 2026 https://isc.sans.edu/podcastdetail/9904, Author: Johannes Ullrich
ISC Stormcast For Wednesday, April 22nd, 2026 https://isc.sans.edu/podcastdetail/9902, (Wed, Apr 22nd)
ISC Stormcast For Wednesday, April 22nd, 2026 https://isc.sans.edu/podcastdetail/9902, Author: Johannes Ullrich
[Guest Diary] Beyond Cryptojacking: Telegram tdata as a Credential Harvesting Vector, Lessons from a Honeypot Incident, (Wed, Apr 22nd)
[Guest Diary] Beyond Cryptojacking: Telegram tdata as a Credential Harvesting Vector, Lessons from a Honeypot Incident, Author: Jesse La Grew
A .WAV With A Payload, (Tue, Apr 21st)
A .WAV With A Payload, Author: Didier Stevens
ISC Stormcast For Tuesday, April 21st, 2026 https://isc.sans.edu/podcastdetail/9900, (Tue, Apr 21st)
ISC Stormcast For Tuesday, April 21st, 2026 https://isc.sans.edu/podcastdetail/9900, Author: Johannes Ullrich
Handling the CVE Flood With EPSS, (Mon, Apr 20th)
Handling the CVE Flood With EPSS, Author: Xavier Mertens
ISC Stormcast For Monday, April 20th, 2026 https://isc.sans.edu/podcastdetail/9898, (Mon, Apr 20th)
ISC Stormcast For Monday, April 20th, 2026 https://isc.sans.edu/podcastdetail/9898, Author: Johannes Ullrich
ISC Stormcast For Friday, April 17th, 2026 https://isc.sans.edu/podcastdetail/9896, (Fri, Apr 17th)
Recorded Future
From Overwhelmed to Autonomous: Rethinking Threat Intelligence in 2026
For most security teams today, volume and access to intelligence isn’t the problem. It’s the speed at which they can turn that intelligence into action. .
The Iran War: What You Need to Know
Insikt Group tracks the cyber, physical, and geopolitical components of the US-Israeli strikes on Iran — with continuously updated threat analysis and scenarios.
Critical minerals and cyber operations
Learn how critical minerals and rare earth elements (REEs) are evolving from commodities into strategic flashpoints. Explore the geopolitical risks of China’s refining dominance, t...
Today, trust is the superpower that makes innovation possible
How better intelligence and collaboration can unlock new opportunities for growth and greater financial health for more people.
Evolution of Chinese-Language Guarantee Telegram Marketplaces
Chinese-language, Telegram-based “guarantee” marketplaces are increasingly popular among Chinese-speaking criminal groups despite the widely publicized shutdown of Huione Guarantee...
AI Hype vs. Reality: Is AI Really Rewriting the Vulnerability Equation?
AI vulnerability research and discovery capabilities are improving, but they have not changed the fundamentals of vulnerability management.
Emerging Enterprise Security Risks of AI
Agentic AI adoption is accelerating rapidly as enterprise software and applications increasingly incorporate task-specific AI agents, enabling autonomous execution of complex tasks...
4 Essential Integration Workflows for Operationalizing Threat Intelligence Recorded Future
Learn how to integrate threat intelligence into your existing security stack with Recorded Future. Explore four stages of cyber maturity, four key integration workflows, and practi...
From Bazooka to Fake Nikes
A deep dive into business impersonation fraud — from fake companies cashing stolen checks to AI-powered shopping scams — and why the same vulnerability enables both.
Your Supply Chain Breach Is Someone Else's Payday
A supply chain attack by TeamPCP compromised trusted software tools to harvest credentials at scale, enabling payroll fraud, logistics theft, and ransomware extortion.
Proofpoint News Feed
Clear market trend for software providers to help with AI: Proofpoint CEO
Sumit Dhawan, Proofpoint CEO, joins 'Closing Bell' to discuss ServiceNow's quarterly earnings results, if Anthropic's Mythos makes incumbent players more important and much more.
Cargo thieving hackers running sophisticated remote access campaigns, researchers find
Losses from cargo theft in North America rose to $6.6 billion in 2025, driven largely by digital attacks, according to the fleet management company Geotab.
Sumit Dhawan on NYSE Floor Talk | Proofpoint AI Security
At RSAC 2026, Proofpoint CEO Sumit Dhawan joined JD Durkin of the NYSE to discuss one of the biggest shifts in cybersecurity: the rise of AI agents in the en...
FIFA World Cup 2026: More than One-Third of Official Partners Expose the Public to the Risk of Email Fraud
Analysis by cybersecurity company Proofpoint reveals that while most partners have implemented baseline email authentication, many are still not proactively blocking fraudulent ema...
Microsoft 365 mailbox rules abused for exfiltration, persistence
Attackers abuse Microsoft 365 mailbox rules to hide activity, steal data, and persist after password resets.
How AI is getting better at finding security holes
Anthropic announced this week that its new model found security flaws in "every major operating system and web browser." Even before the news, AI models had gotten dramatically bet...
AI Security Risks: Proofpoint CSO Ryan Kalember, Live at RSAC 2026
Watch the Fireside Below, or Click HERE: Tech Edge hosted a fireside chat on March 25 at RSA Conference 2026 in San Francisco with Ryan Kalember, Chief Strategy Officer at Proofpoi...
Axios Future of Cybersecurity: Russians suspected of using iPhone spyware
15 Top Cybersecurity CEOs On The Future Of AI Agents: RSAC 2026
At RSAC 2026, CRN spoke with CEOs at 15 top cybersecurity vendors—including CrowdStrike, SentinelOne and Netskope—about where they see AI agents heading next.
How AI Agents Are Redefining the Insider Risk Threat Model
Fraud Prevention – Riskified
Agentic commerce: harness it, don’t outsource it
ZDI: Upcoming Advisories
ZDI-CAN-29143: Apple
Microsoft 365 Blog
Copilot’s agentic capabilities in Word, Excel, and PowerPoint are generally available
Copilot's newest features are now generally available as the default experience across all Microsoft 365 subscriptions.
Bring your everyday business apps into the flow of work with agents in Microsoft 365 Copilot
Discover how apps integrate with AI agents to power Copilot experiences, streamline workflows, and turn business context into action.
New and improved: Multi-agent orchestration, connected experiences, and faster prompt iteration
Explore what's new in Copilot Studio: Multi-agent systems now generally available, plus updates to the Prompt Editor and governance controls.
Copilot Cowork: Now available in Frontier
Today, Copilot Cowork—designed for long-running, multi-step work in Microsoft 365—is available via the Frontier program.
Copilot Cowork: A new way of getting work done
Copilot Cowork turns intent into action across Microsoft 365—automating tasks, coordinating workflows, and keeping you in control. See how.
Powering Frontier Transformation with Copilot and agents
Wave 3 of Microsoft 365 Copilot introduces Copilot Cowork, multi‑model intelligence, and enterprise‑ready AI—built to get real work done.
SharePoint at 25: How Microsoft is putting knowledge to work in the AI era
Discover how SharePoint’s 25‑year legacy powers Microsoft 365 Copilot, Work IQ, and AI‑driven knowledge for organizations worldwide.
Microsoft Sovereign Cloud adds governance, productivity, and support for large AI models securely running even when completely disconnected
As digital sovereignty becomes a strategic requirement, organizations are rethinking how they deploy critical infrastructure and AI capabilities under tighter regulatory expectatio...
The ultimate Microsoft 365 community event returns—your front‑row seat to the future of intelligent work
Join the ultimate Microsoft 365 community event with fresh insights, AI innovations, and a front‑row look at the future of intelligent work.
6 core capabilities to scale agent adoption in 2026
Learn six capabilities to support agent adoption at scale in 2026 with Microsoft Copilot Studio, from governance and security to operations.
GRAHAM CLULEY
Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not
A company that ran anonymous tip lines for 35,000 American schools – handling reports of bullying, weapons, and self-harm – boasted on its website that it had…
Singer loses life savings to fake wallet downloaded from the Apple App Store
If you hold cryptocurrency, there's a very simple golden rule that you should always follow.
Sometimes changing the password on your email mailbox isn’t enough
Smashing Security podcast #463: This AI company leaked its own code. It’s also built something terrifying
A hacking group claims to have broken into the flood defence system protecting Venice’s Piazza San Marco – and is offering to sell access to whoever wants it.
108 malicious Chrome extensions caught stealing Google and Telegram data from 20,000 users
These Chrome extensions looked harmless - but secretly stole data and hijacked accounts. Here’s what you need to know.
AI and cryptocurrency scams are costing Americans billions, FBI reports
Smashing Security podcast #462: LinkedIn is spying on you, and you agreed to nothing
LinkedIn has been secretly scanning your browser for over 6,000 installed extensions — on every single click you make. It can tell if you’re job hunting…
Life imprisonment for Cambodian scam compound operators – but will it make a difference?
Nigerian romance scammer jailed after being caught out by fellow fraudster
A Nigerian man who posed as a woman online to swindle men out of their savings has been sentenced to 15 years in a US prison.
Smashing Security podcast #461: This man hid $400 million in a fishing rod. Then it vanished
A cannabis-growing, beekeeping, gyrocopter-flying Irishman invested his drug money in Bitcoin back in 2011 – and now sits on a fortune worth $400 million. There’…
Microsoft Security Blog
AI-powered defense for an AI-accelerated threat landscape
Read how Microsoft is partnering with Anthropic and broader industry to use leading models, paired with our platforms and expertise, to turn AI-driven discovery into protection at ...
Detection strategies across cloud and identities against infiltrating IT workers
The shift to remote and hybrid work since the pandemic expanded global hiring and accelerated digital onboarding, increasing reliance on online identity verification and remote acc...
Making opportunistic cyberattacks harder by design
How Microsoft secures Dynamics 365 and Power Platform by removing credentials, reducing attack surfaces, and using platform engineering to block opportunistic threats.
Cross‑tenant helpdesk impersonation to data exfiltration: A human-operated intrusion playbook
Threat actors are abusing external Microsoft Teams collaboration to impersonate IT helpdesk staff and convince users to grant remote access. Once inside, attackers can abuse legiti...
Containing a domain compromise: How predictive shielding shut down lateral movement
Domain compromise accelerates fast. Predictive shielding slowed it down. This real-world attack shows how exposure-based containment stopped credential abuse and broke the threat a...
Building your cryptographic inventory: A customer strategy for cryptographic posture management
Learn how to build a comprehensive cryptographic inventory and strengthen quantum‑safe readiness using Microsoft Security tools, best‑practice lifecycle models, and partner solutio...
Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise
The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North Korean threat actor Sapphire Sleet that abuses user driven ...
Incident response for AI: Same fire, different fuel
AI changes how incidents unfold and how we respond. Learn which IR practices still apply and where new telemetry, tools, and skills are needed.
The agentic SOC—Rethinking SecOps for the next decade
In the SOC of the future, autonomous defense moves at machine speed, agents add context and coordination, and humans focus on judgment, risk, and outcomes.
Investigating Storm-2755: “Payroll pirate” attacks targeting Canadian employees
Microsoft Incident Response – Detection and Response Team (DART) researchers observed an emerging, financially motivated threat actor, tracked as Storm-2755, compromising Canadian ...
CISA Cybersecurity Advisories
Defending Against China-Nexus Covert Networks of Compromised Devices
Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure
Pro-Russia Hacktivists Conduct Opportunistic Attacks Against US and Global Critical Infrastructure
CISA Shares Lessons Learned from an Incident Response Engagement
Countering Chinese State-Sponsored Actors Compromise of Networks Worldwide to Feed Global Espionage System
CISA and USCG Identify Areas for Cyber Hygiene Improvement After Conducting Proactive Threat Hunt at US Critical Infrastructure Organization
#StopRansomware: Interlock
Ransomware Actors Exploit Unpatched SimpleHelp Remote Monitoring and Management to Compromise Utility Billing Software Provider
Threat Actors Deploy LummaC2 Malware to Exfiltrate Sensitive Data from Organizations
Russian GRU Targeting Western Logistics Entities and Technology Companies
Krebs on Security
‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty
A 24-year-old British national and senior member of the cybercrime group "Scattered Spider" has pleaded guilty to wire fraud conspiracy and aggravated identity theft. Tyler Robert ...
Patch Tuesday, April 2026 Edition
Microsoft today pushed software updates to fix a staggering 167 security vulnerabilities in its Windows operating systems and related software, including a SharePoint Server zero-d...
Russia Hacked Routers to Steal Microsoft Office Tokens
Hackers linked to Russia's military intelligence units are using known flaws in older Internet routers to mass harvest authentication tokens from Microsoft Office users, security e...
Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab
An elusive hacker who went by the handle "UNKN" and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities in Germany say 31-year-old Rus...
‘CanisterWorm’ Springs Wiper Attack Targeting Iran
A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wi...
Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
The U.S. Justice Department joined authorities in Canada and Germany in dismantling the online infrastructure behind four highly disruptive botnets that compromised more than three...
Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker
A hacktivist group with links to Iran's intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in Mich...
Microsoft Patch Tuesday, March 2026 Edition
Microsoft Corp. today pushed security updates to fix at least 77 vulnerabilities in its Windows operating systems and other software. There are no pressing "zero-day" flaws this mo...
How AI Assistants are Moving the Security Goalposts
AI-based assistants or "agents" -- autonomous programs that have access to the user's computer, files, online services and can automate virtually any task -- are growing in popular...
Who is the Kimwolf Botmaster “Dort”?
In early January 2026, KrebsOnSecurity revealed how a security researcher disclosed a vulnerability that was used to assemble Kimwolf, the world's largest and most disruptive botne...
Blog
Revenue Fraud Schemes: Do You Really Understand Them?
The auditor needs to obtain a “deeper understanding” of potential fraud schemes in their audit planning and execution
Financial Statement Fraud Audit Planning: From Risk to Detection
We share How to build a financial statement fraud audit plan that turns fraud risk into procedures designed to detect material misstatements. Learn more...
Delve into a Deeper Understanding: Financial Reporting Fraud Risk Statement
Develop a “deeper understanding” of potential fraud schemes to bring into audit planning and execution. Here's a look at that in financial reporting.
How to plan your audit to reveal fraud - the ghost employee
The new fraud auditing standards call for a deeper understanding of potential fraud. Here's how to implement that in audit planning and execution.
Developing a Deeper Understanding of Fraud Risk: Illustrated With Using Ghost Employee Scheme
The new fraud auditing standards require auditors to add a “deeper understanding of potential fraud schemes” into their audit planning and execution.
A New Way to Think About Fraud Risk Assessment
It is time to redesign the fraud risk assessment process and incorporate an understanding of how these fraud risk statements operate in the real world. 
Where is the beef? Developing a Deeper Understanding of Potential Fraud Schemes
The fraud auditing profession needs to provide better guidance or better examples of what is meant by a deeper understanding of fraud risk statements.
An Auditor's Obligation to Understand Fraud Schemes
Is your fraud risk assessment designed to fail?
Does Our Professional Guidance Provide Sufficient Guidance for Effective Fraud Risk Management
Heimdal Security Blog
Heimdal Expands AI Strategy with AI Wingman and Third-Party AI Containment
Heimdal today unveiled the next phase of its AI strategy, expanding AI Wingman with three new layers - Assist, Triage and SOC - alongside the introduction of Third-Party AI Contain...
You Only Know What You’ve Got When Its Gone
Prepare for the expected. Rehearse an action plan in case of technology failure or cyberattacks. We all know they can happen.
Nordic MSPs Can Now Access Heimdal’s Unified Security and Compliance Platform Through Elovade
Heimdal has appointed Elovade as its official distributor in the Nordic region. The move gives MSPs and resellers across Sweden, Norway, Denmark, Iceland, and Finland direct access...
OpenClaw Incidents Show Why AI Adoption Pressure Puts Companies at Risk
The OpenClaw security failures show how hasty AI adoption can expose businesses and supply chains to major cyber risk.
Heimdal Claims Industry First With a Cyber Essentials Control Mapping for PEDM to Help Organisations Prove Least Privilege
Heimdal is the first vendor to publish a dedicated Cyber Essentials control mapping for PEDM, setting out how privilege management supports Cyber Essentials requirements and what e...
Five Predictions for Cyber Security Trends in 2026
Morten Kjaersgaard, Heimdal’s Founder, and Adam Pilton, a former cybercrime investigator, predict five cyber security trends for 2026. 
Heimdal Achieves OPSWAT Gold Certification for Anti-Malware
Heimdal today announced that its Next-Gen Antivirus (NGAV) with Extended Threat Protection (XTP) has achieved OPSWAT Gold Certification for Anti-Malware, validating its compatibili...
How to Avoid Holiday Shopping Scams (From a Former Cyber Detective)
Worried about holiday scams? Ex-cybercrime detective Adam Pilton breaks down the biggest threats and how to shop safely this festive season.
ITDR Best Practices: How to Detect, Prevent, and Contain Critical Identity Threats
Key takeaways: ITDR solutions monitor identity-based threats that traditional security tools miss, like hackers logging in with stolen credentials Effective ITDR requires integrati...
When Buyers Discount MSPs With One Big Customer
Your biggest customer loves you. Three years together. They trust you, pay on time, and refer others. From where you sit, that’s loyalty. From where a buyer sits, that’s a $$$ disc...
Trend Micro Research, News, Perspectives
Void Dokkaebi Uses Fake Job Interview Lure to Spread Malware via Code Repositories
Our research on Void Dokkaebi’s operations uncovered a campaign that turns infected developer repositories into malware delivery channels. By spreading through trusted workflows, o...
Identity Protection in the AI Era
Learn about a proactive, identity-first security approach that integrates visibility, threat detection and response, zero trust enforcement, AI protection, and threat intelligence ...
U.S. Public Sector Under Siege: Threat Intelligence for Q1 2026
Discover how TrendAI Vision One™ empowers government agencies and educational institutions with advanced visibility, intelligence, and automation to stay ahead of evolving public s...
Claude Code Packaging Error Remains a Lure in an Active Campaign: What Defenders Should Do
Threat actors leveraged Anthropic’s Claude Code npm release packaging error to distribute Vidar, GhostSocks, and PureLog Stealer. This blog details immediate steps organizations ca...
Weaponizing Trust Signals: Claude Code Lures and GitHub Release Payloads
A packaging error in Anthropic’s Claude Code npm release briefly exposed internal source code. This entry examines how threat actors rapidly weaponized the resulting attention, piv...
TrendAI Insight: New U.S. National Cyber Strategy
Explore the White House National Cyber Strategy and its six pillars to strengthen U.S. cybersecurity—covering deterrence, regulation, federal modernization, critical infrastructure...
The Real Risk of Vibecoding
Is vibecoding hurting your projects? Discover the hidden dangers behind this trend and how it can lead to unstable code, poor performance, and costly fixes.
Axios NPM Package Compromised: Supply Chain Attack Hits JavaScript HTTP Client with 100M+ Weekly Downloads
TrendAI™ Research at RSAC 2026: Advancing Defense Across AI‑Driven and Cyber‑Physical Threats
TeamPCP’s Telnyx Attack Marks a Shift in Tactics Beyond LiteLLM
Moving beyond their LiteLLM campaign, TeamPCP weaponizes the Telnyx Python SDK with stealthy WAV‑based payloads to steal credentials across Linux, macOS, and Windows.
Blog Articles - Identity Insights | Trulioo
Business Fraud at Network Scale: What the $3.5B Medicare Hospice Crisis Reveals About Know Your Business
See how a $3.5B hospice fraud crisis exposed critical KYB gaps. Learn how Trulioo uses network analysis to detect entity fraud clusters that standard checks miss.
What is Customer Due Diligence (CDD)
Customer due diligence: How to effectively manage your risks and protect your business against potential financial crimes.
Why Legacy Identity Verification Can’t Stop AI-Enabled Fraud
AI-enabled fraud is outpacing legacy identity verification. Learn how modern AI fraud prevention protect revenue and reduce risk.
AML, KYC and Identity Verification in Australia
In Australia, reporting entities need to perform customer identification procedures for all customers and can’t provide the service until completing it.
When Fraud Becomes Background Noise: The Industrialization of Digital Deception
Explore how AI is scaling low-level attacks, and how unified, efficient verification can turn constant noise into digital trust.
The Efficiency Era of KYC: Reverification and Reusable Identity Take Center Stage
Discover how reusable identity and reverification close the KYC gap, stopping synthetic fraud and cutting manual verification costs.
The End of Static KYB: Business Identity in Constant Motion
KYB is evolving from static checks to dynamic business identity. Learn how AI and synthetic fraud are reshaping verification in 2026.
Know Your Agent: The Next Chapter in Digital Trust
AI agents are transforming digital commerce. Learn why Know Your Agent (KYA), provenance and accountability are essential to building trust in agentic commerce.
When Rules Move Faster Than Readiness: Regulatory Adaptability as a Competitive Advantage
Regulations now evolve faster than organizations can adapt. Learn how regulatory agility and modular compliance systems win in 2026.
Digital Identity Trends 2026: AI Fraud, Compliance, and Orchestration
Explore 2026's top digital identity trends, from AI fraud prevention and Know Your Agent (KYA) to dynamic KYB and reusable KYC credentials.
Blog – Forter
Return Policy Abuse Is Theft. It’s Time to Treat It That Way.
Wardrobing, false INR claims, double-dipping: return policy abuse costs retailers $100B a year. Here's what's driving it and why policy can't keep up.
What Is Return Abuse and Why Is It Getting Harder to Stop?
Learn about return fraud, is your business affected, how much are you losing and how can you prevent it.
Return Abuse Prevention Starts with the Person, Not the Policy
Return fraud and return abuse aren't the same problem. Learn the difference, why abuse is accelerating, and why policy alone can't keep up.
Shoptalk 2026: Retail in the Age of AI
Explore Forter’s key takeaways from Shoptalk 2026. Discover how AI is reshaping returns abuse, the rise of agentic commerce, and why identity is the foundation of trust.
Visa’s Updated VAMP Program: What Merchants Need to Know
April 1st, 2026 marks 1 year of Visa Acquirer Monitoring Program (VAMP). It’s also when final, stricter thresholds get enforced — explore what’s changing.
New at Forter: Go Live in Days, Not Months
Built to help merchants move faster, Forter’s latest innovations include the AI Coding Kit and an always-on integration expert.
Forter and VGS Expand Partnership to Power Trusted Agentic Commerce
Forter and VGS expand their partnership to power trusted agentic commerce, combining identity intelligence and tokenization to secure AI-driven transactions.
Unlocking Agentic Commerce for Enterprise Merchants with Forter
Forter’s Agentic Orchestration Suite helps merchants rapidly activate agentic commerce and easily scale as consumers adopt.
NRF 2026: Trust in an Agentic Retail Economy
NRF 2026 highlights how trust, identity, and AI are reshaping retail—plus what leaders must do to prevent fraud and protect loyalty.
The New Trust Equation: Agents, Abuse, and the Future of Retail
Agentic commerce is reshaping retail trust. Learn how leaders can prevent fraud, protect margins, and prepare for AI-driven shopping.
Security | Microsoft Azure Blog | Microsoft Azure
Azure IaaS: Keep critical applications running with built-in resiliency at scale
Azure IaaS: Explore new resources for building a stronger, more efficient infrastructure
Azure reliability, resiliency, and recoverability: Build continuity by design
Microsoft strengthens sovereign cloud capabilities with new services
Enhancing software supply chain security with Microsoft’s Signing Transparency
Oracle Database@Azure offers new features, regions, and programs to unlock data and AI innovation
Building secure, scalable AI in the cloud with Microsoft Azure
Enhance AI security with Azure Prompt Shields and Azure AI Content Safety
Navigating the 2024 holiday season: Insights into Azure’s DDoS defense
6 insights to make your data AI-ready, with Accenture’s Teresa Tung
InfoSec Insights
SSL/TLS Certificate Lifespans Are Decreasing to 200 Days
Sectigo will begin issuing 199-day certificates starting March 12, 2026. Are you ready to handle doubling certificate reissuances? The CA/Browser Forum’s (CABF) Sunday, March 15, 2...
A Guide to PKI Authentication with 8 Examples
Discover how PKI authentication works to help secure your organization, sensitive data, and customers against old and new digital threats.
How to Open 443 Port and Check If It Is Enabled or Not
Port 443 is foundational to secure internet communications. Here’s how to open the 443 port in Windows & Linux, and how to tell if it’s open in the Windows Defender and Linux Uncom...
4 Key SMB Takeaways from OWASP’s GenAI Security Incident Response Guide
Explore 4 takeaways from OWASP's GenAI Security Incident Response Guide to learn why it’s fundamental to every organization’s cybersecurity.
The Ultimate Guide to Software Supply Chain Security Risks, Threats, and Mitigations
This ultimate guide tells everything you need to know to successfully identify, analyze & mitigate the most common software supply chain security risks.
5 Real-World Software Nightmares That Code Integrity Verification Could Have Prevented
Learn from the past to prepare for the future with these 5 infamous cyber attacks (and their disastrous consequences) that could have been prevented with code integrity check. Oper...
How Does PKI Work? A Look at the Inner Workings of Public Key Infrastructure
How does PKI work? How public key infrastructure protects data using authentication, cryptographic key, digital certificates& a trust chain.
8 Practical PKI Uses & Applications That Drive SMB Security
Explore eight practical PKI uses and applications you can implement right now as a small or mid-size business owner (8 SMB PKI use cases).
Demystifying PKI Technology: An Essential Guide for IT Security Professionals
Learn what PKI technology is & the role PKI IT security plays in securing environments by enabling data privacy, integrity, and authentication
10 Digital Identity Examples for Small Business Owners
Explore 10 digital identity examples that you can implement within your small or mid-size business without breaking the bank.
Fraud Prevention Archives - Alloy Silverstein
AI in Tax Season: Risks, Scams, and How to Protect Your Data
Protect yourself this tax season while using AI. Learn how to safely leverage AI tools, avoid tax scams, and ensure your filings are accurate with guidance from Alloy Silverstein C...
Tax Season Scams to Watch For This Year
Tax season is a busy time for taxpayers and, unfortunately, a busy time for scammers as well. Each year, the Internal Revenue Service continues to warn individuals and businesses t...
Beware of Misleading Tax Advice on Social Media
Each year the IRS educates taxpayers on the most trending fraud schemes that could deceive individuals and businesses during tax season. In late 2024, The IRS took to warning the p...
Scammers Up Their Game With AI
Learn how to spot the threats and protect yourself from scammers using AI for phishing and deepfakes with smart security practices.
The Essential Guide to Safeguarding Your Online Passwords
Protect your personal and business data with strong passwords, two-factor authentication, and smart cybersecurity practices.
Beware: Tax Season is Scam Season
Tax season is also prime time for tax scams. To safeguard your personal information, consider these key points: Communication methods The IRS initiates contact primarily through ma...
Stop Scams: Fraud Prevention Starts with Your Employees
You can be as proactive and protective as possible when it comes to cyber security for your business, but there’s one vulnerability you cannot eliminate: human error. In fact, stat...
‘Tis the Season for Holiday Shopping Scams
The holidays are typically the time of year for gifting presents to friends and family or donations to charity. Unfortunately, not-so-jolly fraudsters take advantage of this genero...
IRS Issues “Dirty Dozen” Fraud Warnings
Each year, the IRS releases a “Dirty Dozen” series to highlight the most common fraud schemes taxpayers should be aware of.
IRS Identity Theft Season Begins Now
Each year thieves try to steal billions in federal withholdings by stealing your identity. As the IRS focuses more attention on this quickly growing problem, now is the time of yea...
First Six Last Four
Why SaaS Companies are Becoming Payments Facilitators [PayFac]
Why PCI-DSS is a Scam Designed to Catch Out Small Businesses
Payments Fraud Pattern & Issue Analysis Using SQL
Links to the key 2021 Payments Reports
Fraud detection techniques: Links
Beginners Guide to Payment Fraud Detection & Prevention
Offsite passive fraud checks & data vendors
Payment fraud attacks, spikes and patterns
5 Things You Can do Today to Reduce Fraud
Full List of IP Address Data Providers