Switzerland confirms that sensitive information from several offics was leaked through attack targeting third-party provider, Radix.
Posted inCybersecurity News

Switzerland confirms that sensitive information from several offics was leaked through attack targeting third-party provider, Radix.

Switzerland has officially confirmed that sensitive information from several federal offices has been impacted by a ransomware attack targeting the third-party organization Radix, a Zurich-based non-profit health foundation. The attack, which occurred on June 16, 2025, resulted in both the theft and encryption of data. Hackers subsequently leaked the stolen data on the dark web, with reports indicating that the Sarcoma ransomware group claimed responsibility and published approximately 1.3 TB of data in several compressed archives.
Microsoft rolls out email bomb blocking in Defender for Office 365.
Posted inCybersecurity News

Microsoft rolls out email bomb blocking in Defender for Office 365.

Microsoft has announced a new feature for its Defender for Office 365 cloud-based email security suite: automatic detection and blocking of email bombing attacks. This enhancement, called Mail Bombing Detection, is designed to protect organizations from coordinated efforts to flood mailboxes with large volumes of emails, which can overwhelm systems and obscure important messages, potentially masking genuine threats or hindering business operations.
Cybercriminals are creating AI-themed websites that exploit search engine algorithms to manipulate rankings and achieve higher visibility in search results.
Posted inCybersecurity News

Cybercriminals are creating AI-themed websites that exploit search engine algorithms to manipulate rankings and achieve higher visibility in search results.

Researchers from Zscaler ThreatLabz recently uncovered a sophisticated cyber campaign that exploits public interest in popular AI tools such as ChatGPT and Luma AI. Threat actors have created AI-themed websites that use Black Hat SEO techniques to manipulate search engine rankings, making these malicious sites appear prominently in results for trending AI-related queries.
Blind Eagle linked to Russian-based Proton66 in a campaign targeting Colombian financial institutions.
Posted inCybersecurity News

Blind Eagle linked to Russian-based Proton66 in a campaign targeting Colombian financial institutions.

The threat actor group Blind Eagle (also known as AguilaCiega, APT-C-36, or APT-Q-98) has been linked to the Russian bulletproof hosting service Proton66 in a campaign targeting Colombian financial institutions. Trustwave SpiderLabs assessed this connection with high confidence after tracing Proton66-linked infrastructure to active clusters deploying phishing tools and remote access trojans (RATs) against banks like Bancolombia, BBVA, Banco Caja Social, and Davivienda.
GAO says NASA’s biggest projects are at risk of disruption in an increasingly threatening cyber environment.
Posted inCybersecurity News

GAO says NASA’s biggest projects are at risk of disruption in an increasingly threatening cyber environment.

According to the Government Accountability Office (GAO), NASA’s projects for Earth, moon, and solar system exploration are at risk of disruption because their spacecraft and space systems operate in an increasingly complex and threatening cyber environment. The GAO’s recent reports have highlighted several critical vulnerabilities and gaps in NASA’s cybersecurity risk management practices.
Europol disrupts international cryptocurrency fraud ring responsible for laundering $540 million from victims worldwide.
Posted inCybersecurity News

Europol disrupts international cryptocurrency fraud ring responsible for laundering $540 million from victims worldwide.

Europol, in collaboration with law enforcement agencies from Spain, France, Estonia, and the United States, has helped disrupt a major international cryptocurrency investment fraud ring responsible for laundering approximately $540 million (€460 million) from over 5,000 victims worldwide. The operation was led by Spanish authorities, with arrests made in Madrid and the Canary Islands, resulting in the apprehension of five individuals—three on the Canary Islands and two in Madrid.
GIFTEDCROOK malware transitions from a basic browser data stealer to a sophisticated intelligence-gathering tool.
Posted inCybersecurity News

GIFTEDCROOK malware transitions from a basic browser data stealer to a sophisticated intelligence-gathering tool.

The GIFTEDCROOK malware, operated by the cyber-espionage group UAC-0226, has undergone a significant transformation from a basic browser data stealer to a sophisticated intelligence-gathering tool. This evolution occurred through rapid version updates between April and June 2025, aligning with critical geopolitical events like Ukraine’s peace negotiations in Istanbul.
CISA and FBI issue warning to remain vigilant during continued political tensions with Iran.
Posted inCybersecurity News

CISA and FBI issue warning to remain vigilant during continued political tensions with Iran.

Today, CISA, in collaboration with the Federal Bureau of Investigation (FBI), the Department of Defense Cyber Crime Center (DC3), and the National Security Agency (NSA), released a joint Fact Sheet titled “Iranian Cyber Actors May Target Vulnerable US Networks and Entities of Interest.” This document is a direct response to increasing cyber activity from Iranian state-sponsored or affiliated threat actors, including hacktivists and government-linked groups, who are expected to escalate their operations due to recent geopolitical events.
FBI issues warning about cybercriminals impersonating health insurers.
Posted inCybersecurity News

FBI issues warning about cybercriminals impersonating health insurers.

The Federal Bureau of Investigation (FBI) has issued a warning to Americans about cybercriminals impersonating health fraud investigators and legitimate health insurers to steal sensitive information. In these scams, criminals send emails and text messages that appear to come from trusted healthcare authorities or insurers, pressuring victims—including both patients and healthcare providers—into disclosing protected health information, medical records, or personal financial details.