Key TakeawaysPolicy Shift: ExpressVPN password manager policy change limits use after subscription ends, removing ability to add passwordsRestricted Features: Existing users retain access to credentials…

Key TakeawaysNordVPN lawsuit: Filed in Virginia, alleges deceptive auto-renewal practices making subscription cancellations intentionally difficult for usersKey allegations: Claims unclear billing terms, misleading notices, and…

Key TakeawaysHardcoded API exposure: A ClickUp API key leak exposed nearly a thousand corporate and government emails via an unauthenticated JavaScript file on its homepage.Critical…

Key TakeawaysHTML injection exploit: Threat actors abused an account creation flaw to inject arbitrary HTML into legitimate Robinhood account confirmation emails.Spoofed security alerts: The Robinhood…

Key TakeawaysGlobal exploitation: Xu Zewei participated in the HAFNIUM hacking campaign, compromising thousands of Microsoft Exchange Server instances worldwide.Targeted institutions: The suspect allegedly hacked U.S.…

Key TakeawaysPending network verification: The LAPSUS$ hacking group claims to have successfully breached the internal networks of telecommunications giant Vodafone.Data exposure claims: The specific volume…

Key TakeawaysNetwork breach detected: Utility technology provider Itron reported unauthorized third-party access to specific internal IT systems during a recent cybersecurity incident.Cyberattack response initiated: The…

Key TakeawaysCovert surveillance deployment: The Morpheus malware hides within fake Android spyware apps, tricking users into installing malicious updates.Vendor attribution identified: Evidence links this cyber…

Key TakeawaysData exposure: The April 2026 Udemy data breach exposed 1.4 million user accounts publicly following a sophisticated network intrusion.Threat actor identification: The notorious ShinyHunters…

Mike Watson – State of Virginia Mike Watson has been elevated to Chief Information Officer for the State of Virginia. He has spent more than…

Cybercrime is evolving into structured operations, with organized workflows and repeatable attack models. Access remains a key lever, with third-party abuse witnessed throughout the month.…

Key TakeawaysPersistent threat access: A critical US agency breach occurred via a Cisco vulnerability, enabling attackers to maintain unauthorized network access for months.Malware deployment tactics:…

Key TakeawaysDeceptive methodologies: The UNC6692 threat actor leveraged Microsoft Teams impersonation to masquerade as legitimate internal IT support infrastructure.Malware deployment: The UNC6692 SNOW malware was…

Key TakeawaysSurfshark Dausos audit findings: Cure53 audit found no critical or high severity vulnerabilities within Dausos protocol scopeOut-of-scope risks identified: High severity issues found in…

Key TakeawaysExpanded investigation: Vercel uncovered additional compromised accounts linked to the recent Context.ai security incident.Secondary findings: During the investigation, a separate incident came to light,…

Key TakeawaysTreasury enforcement: The US Treasury imposed sanctions on Cambodian Senator Kok An and 28 affiliates operating a massive international cybercrime and extortion network.Financial impact:…

Key TakeawaysState-sponsored: A new China-aligned APT group deployed the GopherWhisper malware to execute a highly targeted Mongolian government cyberattack.Cyberespionage: The operators utilize a sophisticated arsenal…

Key TakeawaysAttack vector: Tropic Trooper utilized a trojanized SumatraPDF loader to deploy an AdaptixC2 Beacon agent against Asian targets.Covert C2 infrastructure: The operators engineered a…

Key TakeawaysSecurity vulnerability: An Apple bug fix addresses a flaw where deleted chat messages remained in the notification database.Forensic extraction: Law enforcement agencies exploited this…

Key TakeawaysMassive data exposure: A Rituals Cosmetics data breach may have compromised sensitive customer membership records, including personal contact details.Global customer impact: This cybersecurity incident…