Noodlophile Stealer Evolves with Fake Jobs and Anti-Analysis Tricks
Noodlophile stealer operators evolved from fake AI video ads to fake job postings targeting job seekers, students, and marketers. The Vietnamese UNC6229 group uses phishing…
25 Vulnerabilities Found in Cloud Password Managers
Researchers from ETH Zurich discovered 25 serious vulnerabilities in Bitwarden, LastPass, and Dashlane cloud password managers. These flaws let malicious servers bypass zero-knowledge encryption claims…
Passkeys and ISO 27001 Compliance: Complete Transition Guide
Organizations transitioning to passkeys can maintain full ISO 27001 compliance by carefully mapping FIDO2/WebAuthn authentication to Annex A controls A.5.15, A.5.17, and A.8.5 while documenting…
Infostealer Malware Targets OpenClaw AI Secrets First Time
Infostealer malware stole OpenClaw AI agent configuration files for the first time on February 13, 2026. Hudson Rock found a live case where the malware…
Dutch Man Arrested for Extorting Police Over Data Leak
A 40-year-old man in Ridderkerk, Netherlands, faces arrest for computer hacking after demanding a reward for confidential police files he downloaded by mistake. Dutch police…
Eurail Data Breach: Stolen Traveler Info Hits Dark Web
Eurail B.V. confirmed stolen customer data from an earlier breach now sells on dark web markets. A threat actor also posted samples on Telegram. The…
Washington Hotel Japan Ransomware Attack Disclosed
Washington Hotel in Japan suffered a ransomware attack on February 13, 2026, at 22:00 local time. Hackers breached servers and accessed business data. The chain…
Lithuania Builds AI Cyber Defenses for Safe Digital Society
Lithuania launched a national mission to create a safe and inclusive e-society. The program fights AI-driven cyber fraud and boosts digital resilience. It brings together…
BeyondTrust CVE-2026-1731 Actively Exploited for Domain Takeover
Attackers exploit a critical BeyondTrust vulnerability, CVE-2026-1731, in the wild to run OS commands and seize full domain control. This unauthenticated flaw hits self-hosted Remote…
CISA Warns: ZLAN ICS Device Flaws Enable Full Takeover
CISA issued an urgent alert on two critical vulnerabilities in ZLAN Information Technology Co.’s ZLAN5143D industrial communication device. These flaws, tracked as CVE-2026-25084 and CVE-2026-24789,…
November 21, 2025
1 comment 
