FBI: Russian hackers now target Signal backup recovery keys (2026-06-26 22:06 UTC)
Kurz: The FBI and CISA are warning that a phishing campaign targeting Signal users tied to Russian intelligence services has evolved to steal Signal Backup Recovery Keys, allowing attackers to access victims’ historical messages. […]
CISA sets urgent deadline to fix Cisco flaw exploited in attacks (2026-06-26 19:43 UTC)
Kurz: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is giving federal agencies until Sunday to patch a vulnerability in Cisco Unified Communications Manager Server that is being actively exploited. […]
Polymarket customers lose $3 million in supply-chain attack (2026-06-26 18:04 UTC)
Kurz: Polymarket says it will fully reimburse customers who lost an estimated $3 million after hackers injected a malicious script into the platform’s frontend following a breach at a third-party vendor. […]
Kurz: The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup Recovery Key. Hand it over once, and the…
New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks (2026-06-26 18:17 UTC)
Kurz: A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on compromised hosts. Kaspersky, which is tracking th…
Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign (2026-06-26 16:21 UTC)
Kurz: A Chinese-speaking advanced persistent threat (APT) actor has been linked to a new custom backdoor called TinyRCT as part of cyber attacks aimed at government entities and critical infrastructure in Southeast Asia. The activity, particularl…