Fake Zoom and Google Meet scams install Teramind: A technical deep dive
On February 24, 2026, we published an article about how a fake Zoom meeting “update” silently installs monitoring software, documenting a campaign that...
AndyC
Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.
Aeternum C2 Botnet Stores Encrypted Commands on Polygon Blockchain to Evade Takedown
Cybersecurity researchers have disclosed details of a new botnet loader called Aeternum C2 that uses a blockchain-based command-and-control (C2) infrastructure...
Proofpoint Collaboration Security Integrates with New Extended Plan for AWS Security Hub
SUNNYVALE, Calif., February 26, 2026 – Proofpoint, Inc., a leading cybersecurity and compliance company, today announced that Proofpoint Collaboration Protection is now integrated with the Extended plan in AWS...
How AI Agents Automate CVE Vulnerability Research
The CVE Researcher is a multi-agent AI pipeline that automates vulnerability research, detection template generation, and exploitation analysis. Built...
How to understand and avoid Advanced Persistent Threats
By definition, an advanced persistent threat (APT) is a prolonged, targeted attack on a specific victim with the intention to compromise...
Emulating the Systematic LokiLocker Ransomware
LokiLocker is a Ransomware-as-a-Service (Raas) that has been active since at least mid-August 2021 targeting Windows systems. The ransomware...
X (Twitter) Account Hacked: What to Do Right Now
X (formerly Twitter) hacks tend to hit fast. One minute you’re scrolling like normal. The next, your account is posting crypto promotions,...
U.S. CISA adds Cisco SD-WAN flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Cisco SD-WAN flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 26, 2026 U.S. Cybersecurity and...
Notorious ransomware gang allegedly blackmailed by fake FSB officer
There is a certain poetic justice in a cybersecurity-related story that has emerged from Moscow this week: A man has...
OpenClaw Security Risk: OAuth and SaaS Identity
OpenClaw runs on an employee’s machine. But the access it creates lives inside Slack, Salesforce, Google Workspace, GitHub, and...
Life in the Swimlane with Chris Mallow, Partner Solutions Architect
Feb 26, 2026 Welcome to the “Life in the Swimlane” blog series. Here we will feature interviews with Swimlaners...
NATO approves iPhone and iPad to handle classified info
As part of that effort, BSI conducted a comprehensive series of assessments and tests, including deep security analysis, to make sure that the security capabilities...
UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor
Ravie LakshmananFeb 26, 2026Malware / Threat Intelligence A previously undocumented threat activity cluster has been attributed to an ongoing malicious...
ThreatsDay Bulletin: Kali Linux + Claude, Chrome Crash Traps, WinRAR Flaws, LockBit & 15+ Stories
Ravie LakshmananFeb 26, 2026Cybersecurity / Hacking News Nothing here looks dramatic at first glance. That’s the point. Many of this...
Expert Recommends: Prepare for PQC Right Now
The Hacker NewsFeb 26, 2026Encryption / Data Protection Introduction: Steal It Today, Break It in a Decade Digital evolution is...
