Cybersecurity & Compliance Resources

On this page you’ll find curated cybersecurity news, threat intelligence, and analysis from independent, well-known security researchers and news outlets.

These feeds are provided for information and awareness only. They are external sources and do not replace formal risk assessments, incident response planning, or tailored consulting. Our goal is to give you a central place to monitor key vulnerabilities, attacks, and security trends that may affect your organization.

Over time, we will also add our own guides, checklists, and practical insights from Virtual GRC & MIS Consulting to help you translate these headlines into concrete actions.

Cybersecurity News – Privacy & Security

Krebs on Security – In-Depth Security Investigations

Krebs on Security publishes in-depth investigations into cybercrime, data breaches, fraud, and major security incidents worldwide. Ideal for understanding how attacks actually happen in the real world.

  • Scattered Spider Hackers Plead Guilty on Day 1 of Trial
    by BrianKrebs
    Two men pleaded guilty in the United Kingdom this week to criminal charges stemming from an August 2024 cyberattack that crippled Transport for London, the entity responsible for the public transport network in the Greater London area. The duo were key members of a prolific cybercrime group known as Scattered Spider, and their guilty pleas […]
  • ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm
    by BrianKrebs
    For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising fraud, account takeovers, and mass data-scraping efforts. This week, researchers from multiple security firms concluded that the Popa botnet is linked to NetNut, a "residential proxy" provider operated by the […]
  • Who Runs the Ransomware Group ‘The Gentlemen?’
    by BrianKrebs
    A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that promises affiliates 90 percent of any ransom paid by victims. This post examines clues pointing to a real life identity for the administrator […]
  • A Record-Breaking Patch Tuesday for June 2026
    by BrianKrebs
    Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company's monthly Patch Tuesday cycle. Nearly three dozen of those bugs earned Microsoft's most dire "critical" rating, and exploit code for at least three of the weaknesses is now […]
  • Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts
    by BrianKrebs
    The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta's "AI support assistant" bot into resetting account passwords.
  • Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
    by BrianKrebs
    Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and disinformation campaigns inside the European Union. The two men were the focus of a 2025 KrebsOnSecurity story about how their hosting companies had assumed control over the […]
  • Lawmakers Demand Answers as CISA Tries to Contain Data Leak
    by BrianKrebs
    Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets on a public GitHub account. The inquiry comes as CISA is still struggling to contain […]
  • Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
    by BrianKrebs
    Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of devices for use in a series of massive distributed denial-of-service (DDoS) attacks over the past six months. KrebsOnSecurity publicly named the suspect in February 2026 after the accused launched a […]
  • CISA Admin Leaked AWS GovCloud Keys on Github
    by BrianKrebs
    Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and […]
  • Patch Tuesday, May 2026 Edition
    by BrianKrebs
    Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code. That reality is on full display this month with some of the more widely-used software makers — including Apple, Google, Microsoft, Mozilla and Oracle — fixing near […]

The Hacker News – Breaking Cybersecurity News

The Hacker News delivers daily coverage of data breaches, vulnerabilities, cyber attacks, and security research. This feed helps you keep track of high-impact threats and patches across vendors and platforms.

  • FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation
    A Russian-speaking initial access broker (IAB) driven by financial gain is assessed to be behind a large-scale credential-harvesting operation known as FortiBleed that has targeted over 430,000 FortiGate firewalls globally. The campaign, active since February 2026, involves collecting credential lists, searching for exposed services, brute-forcing accessible systems, and deploying bespoke
  • Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents
    Security firm AIR built a fake AI agent skill, pushed it through a popular skill marketplace and an Instagram ad, and says it reached roughly 26,000 agents, including some on corporate accounts. Every skill security scanner the firm tested it against marked it safe. The payload was harmless by design: it collected the user's email address and […]
  • Trump Order Sets 2030 Deadline for Federal Post-Quantum Crypto Migration
    President Trump signed an executive order on June 22 setting hard deadlines for federal agencies to move high-value assets and high-impact systems to post-quantum cryptography. Key establishment must move by December 31, 2030; digital signatures by December 31, 2031. EO 14409 leaves national security systems on a separate track. The deadlines matter because of a threat that […]
  • GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns
    GitHub is moving to strengthen software supply chain security by updating "actions/checkout" to block pwn request attacks that exploit the risky use of the "pull_request_target workflow" trigger to run malicious code with the workflow's full privileges. Effective June 18, 2026, the latest version of "actions/checkout," the official GitHub action for checking out a repository into […]
  • Agentic AI: The Weapon That No Longer Needs a Warrior
    Every weapon begins as an extension of the hand that holds it. The spear lengthened the reach of the arm. The bow sent the point flying without the throw. The rifle placed a man's death a quarter mile beyond his sight, and the aircraft carried that death across oceans. At each turn, the distance between […]
  • Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT
    Cybersecurity researchers have discovered a set of malicious npm packages that are designed to deliver a Windows-based remote access trojan (RAT). The list of identified packages, is below – aes-decode-runner-pro (145 downloads) postcss-minify-selector (256 downloads) postcss-minify-selector-parser (615 downloads) All the packages were published over the past month by an npm user named
  • WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool
    Direct messages sent via WhatsApp are being used to distribute malicious Visual Basic Script (VBScript) files that lead to the installation of legitimate Remote Monitoring and Management (RMM) software. Per findings from Kaspersky, the active campaign is targeting users of WhatsApp Desktop and WhatsApp Web across Malaysia, Brazil, India, Mexico, Singapore, the U.K., Spain, Taiwan, […]
  • OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws
    OpenAI on Monday said it's releasing an improved version of its GPT‑5.5‑Cyber model to trusted defenders as part of the Daybreak initiative the artificial intelligence (AI) company announced last month. Calling GPT‑5.5‑Cyber its "strongest model yet for finding and helping patch software vulnerabilities," OpenAI said the model can "sustain deeper analysis across large codebases" to
  • ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack
    Multiple WordPress plugins from ShapedPlugin were compromised in a supply chain attack after unknown threat actors managed to tamper with the official release channels and push backdoor code. "Attackers compromised the vendor's build and distribution pipeline, injecting backdoor code into Pro plugin releases distributed through official licensed update channels," Wordfence said in an analysis
  • 29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests
    A heap over-read in the Squid web proxy can leak another user's cleartext HTTP request, including any credentials or session tokens it carries, to anyone already allowed to send traffic through the same proxy. The bug traces to a 1997 FTP-parsing change and is still live in Squid's default configuration. Researchers at Calif.io disclosed it in […]

The Hacker NThreatpost – Security & Vulnerability Updates

Threatpost is a long-standing cybersecurity news site focused on vulnerabilities, malware, data breaches, and emerging threats. This feed helps you stay informed about critical security issues, patches, and attack trends that may impact your organization’s IT environment.

RSS Error: WP HTTP Error: cURL error 52: Empty reply from server

Scroll to Top