SecurityWeek

UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware

UNC6692 relies on email bombing and social engineering to infect victims with Snow malware: Snowbelt, Snowglaze, and ...

Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks

Over 10,000 Zimbra Collaboration Suite (ZCS) instances exposed online are vulnerable to ongoing attacks exploiting a ...

Crime crew impersonates help desk, abuses Microsoft Teams to steal your data

A previously unknown threat group using tried-and-tested social engineering tactics - Microsoft Teams chat invitations and ...
Indianapolis Business Journal

Indiana hospital systems meet benchmark on direct-to-employer health care deals

The report comes as Indiana hospitals attempt to address widespread criticism — including from state leaders — over high prices.

King Charles arrives in U.S. on mission to reset strained ties

Rift between the U.K. government and Trump includes Starmer’s unwillingness to join U.S. military attacks on Iran ...
Indianapolis Business Journal

FSSA seeks return of $200M in improper payments to attendant care providers

The Indiana Family and Social Services Administration is seeking $200 million in improper payments from Indiana’s five ...
Security Boulevard

10 Warning Signs Your Current Authentication Stack Is a Breach Waiting to Happen

Run a quick self-audit against 10 warning signs that your authentication stack has critical vulnerabilities. Each sign includes a diagnostic check, an explanation of why it's dangerous, and a concrete ...
Newsworthy.ai

An AI Escaped Its Sandbox, Emailed a Researcher, Then Self-Published Its Own Exploit Online!

VectorCertain LLC today announced new validation results demonstrating that its SecureAgent platform successfully detected ...
The Hacker News

Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks

AI-driven attacks uncovered in February 2026 automate kill chain and seize Domain Admin credentials in minutes, forcing ...

ClickUp Data Leak Exposes Enterprise Emails for Over a Year

A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security ...

Robinhood account creation flaw abused to send phishing emails

Online trading platform Robinhood's account creation process was exploited by threat actors to inject phishing messages into ...
The Security Ledger

How Claude Planted Malicious Code In A Crypto-Trading App

A new report from ReversingLabs identified a new tactic by North Korean hackers: feeding malicious code to the AI systems ...