Vulnerabilities
Chicago Cybersecurity Employee Accused of $75M Ransomware Scheme
Federal prosecutors allege Angelo Martino, a former DigitalMint employee, orchestrated ransomware attacks while simultaneously negotiating ransom payments for the victims. The scheme allegedly extracted over $75 million from businesses across multiple industries through coordinated cyberattacks.
Latest
Google Issues Emergency Patches for Two Chrome Zero-Day Exploits
Google has released critical security updates to address two actively exploited zero-day vulnerabilities in Chrome browser that pose serious risks to enterprise security. Security experts urge immediate patching as threat actors are already exploiting these high-severity flaws to execute malicious code and access sensitive data.
Chrome Zero-Day CVE-2026-3910 Exploited in Wild Attacks on V8 Engine
Google has released an emergency Chrome update to patch CVE-2026-3910, a high-severity vulnerability in the V8 JavaScript engine being actively exploited by attackers. The flaw allows remote code execution through malicious HTML pages, marking another significant zero-day threat in 2026.
Telus Digital Suffers Massive Data Breach by ShinyHunters Group
Telus Digital, a major business process outsourcing provider, has been hit by a sophisticated cyberattack from the ShinyHunters extortion group, with reports suggesting up to one petabyte of data may have been stolen. The attack demonstrates a new breed of strategic data theft operations that use legitimate access to avoid detection.
%20(1)%20(1).webp)
Google Chrome Zero-Day Flaws Under Active Attack Prompt Emergency Update
Google has issued an emergency Chrome security update to address two high-severity zero-day vulnerabilities that are actively being exploited in the wild. The flaws, CVE-2026-3909 and CVE-2026-3910, affect Chrome's graphics engine and JavaScript engine respectively, potentially allowing attackers to execute malicious code on vulnerable systems.
CrowdStrike Reports 89% Surge in AI-Enabled Cyberattacks
CrowdStrike's 2026 Global Threat Report reveals dramatic escalation in cyber threats, with AI-powered attacks surging 89% and state-backed cloud intrusions increasing 266%. The report highlights concerning trends including record-breaking 27-second attack breakout times and widespread targeting of edge devices.
DigitalMint Negotiator Charged in $75M Ransomware Scheme
A Florida man working as a ransomware negotiator allegedly conducted attacks on his own clients while employed at DigitalMint. Angelo John Martino III faces federal charges for extorting $75.25 million across multiple ransomware campaigns in 2023.
Epicenter.tech Breach Exposes Enterprise AI Security Gaps
The Epicenter.tech security breach spanning 2024-2026 highlights critical vulnerabilities in enterprise AI infrastructure and cloud integrations. The incident demonstrates how modern multi-environment architectures create complex security dependencies that traditional cybersecurity models struggle to protect.
Microsoft March 2026 Patch Tuesday: Two Zero-Days Under Attack
Microsoft's March 2026 Patch Tuesday addresses two zero-day vulnerabilities currently being exploited by attackers. One bypasses Windows' Mark of the Web security warnings, while the other escalates privileges to SYSTEM level, creating a dangerous attack chain when combined.
Identity Compromise Behind 80% of Cyber Incidents in 2025
Field Effect's 2026 Cyber Threat Outlook reveals that more than 80% of cybersecurity incidents investigated in 2025 stemmed from cloud identity compromise, marking a significant shift in attack methods. The report shows attackers are increasingly bypassing traditional exploits by abusing trusted identities and collaboration platforms like Microsoft Teams.
Zero-Day Vulnerabilities Not as Unstoppable as Industry Claims
Cybersecurity expert Candy Wong challenges the narrative that zero-day vulnerabilities are unpreventable, revealing that genuine zero-day exploitation accounts for only 4-12% of all tracked intrusions. The majority of breaches attributed to zero-days actually involve known vulnerabilities that organizations failed to patch.
LexisNexis Breach Exposes Millions of User Records and Credentials
A data breach at LexisNexis has compromised over 3.9 million records, including sensitive credentials linked to users and government officials.