‘Djinn’ Stealer Targets Cloud, AI Credentials

Cyberattackers have been exploiting a critical vulnerability in remote monitoring and management (RMM) tools, giving them a direct path into enterprise environments with the same trusted access that IT administrators rely on to remotely manage systems. The latest example of this trend is an intrusion campaign dubbed “Djinn Stealer,” which has been targeting cloud and … Read more

Webinar: Why business email compromise attacks keep succeeding

Business Email Compromise Attacks Continue to Outwit Organizations, Leaving a Trail of Financial Devastation in Their Wake Business email compromise (BEC) remains one of the most insidious and costly cyber threats facing organizations today. Attackers have honed their craft to rely on convincing impersonations rather than malware, making it increasingly difficult for employees to distinguish … Read more

Hackers now exploit critical Oracle E-Business flaw in attacks

Critical Oracle E-Business Flaw Exploited in Real-World Attacks, Experts Warn Cyberattackers have begun exploiting a critical vulnerability in the Oracle E-Business Suite (EBS), which enables malicious actors to take control of vulnerable systems with relative ease. The flaw, tracked as CVE-2026-46817, affects the File Transmission component of Oracle’s Payments product and has been discovered to … Read more

NAIC says public data stolen in ShinyHunters’ PeopleSoft breach

A high-profile cyber attack has left the National Association of Insurance Commissioners (NAIC) scrambling to contain the fallout. The ShinyHunters extortion group claimed responsibility for breaching NAIC’s systems, but an investigation by the organization has revealed that the hackers stole only publicly available data and outdated information. The breach occurred when ShinyHunters exploited a zero-day … Read more

Nissan discloses employee data breach linked to Oracle zero-day attacks

Nissan Reveals Extensive Employee Data Breach Linked to Widespread Oracle Zero-Day Attacks In a disturbing reminder of the ongoing cyber threat landscape, Nissan has disclosed that it suffered a significant data breach affecting current and former employees. The breach is believed to be linked to widespread attacks on Oracle PeopleSoft servers, which exploited a previously … Read more

Hackers now exploit critical Oracle E-Business flaw in attacks

Oracle E-Business Flaw Exploited by Hackers, Urgent Patching Recommended A critical vulnerability in Oracle’s E-Business Suite (EBS) financial application has been discovered to be actively exploited by hackers. According to threat intelligence company Defused, attackers are now using the flaw, tracked as CVE-2026-46817, to take over vulnerable systems with ease. For those unfamiliar, the Oracle … Read more

Critical SimpleHelp flaw exploited to deploy new stealer malware

Critical Vulnerability in SimpleHelp Platform Exploited to Deploy New Stealer Malware A critical vulnerability in the SimpleHelp platform has been exploited by hackers to deploy a new cross-platform information stealer known as Djinn Stealer. The vulnerability, identified as CVE-2026-48558, allows attackers to create highly privileged technician accounts without authentication, giving them full access to systems … Read more

NAIC says public data stolen in ShinyHunters’ PeopleSoft breach

A High-Profile Breach Exposes Public Data, Raises Questions About Hacker Claims The National Association of Insurance Commissioners (NAIC) has confirmed that its systems were breached by the notorious hacking group ShinyHunters. The attackers claimed to have stolen sensitive data from NAIC’s Oracle PeopleSoft server, but an investigation revealed that they only accessed publicly available information … Read more

Nissan discloses employee data breach linked to Oracle zero-day attacks

Nissan Discloses Employee Data Breach Linked to Widespread Oracle Exploits Automotive giant Nissan has revealed that it suffered a significant data breach affecting current and former employees, following a wave of attacks targeting Oracle PeopleSoft software. The breach is linked to exploits of a zero-day vulnerability in Oracle’s PeopleTools, which was used by threat actors … Read more

Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input

A malicious Chrome extension, dubbed “Perplexity,” has been discovered intercepting search queries and address bar inputs from millions of users worldwide. The extension, which was available for download on the official Chrome Web Store, posed as a productivity tool that offered personalized recommendations and insights to users. But beneath its innocuous façade, Perplexity was secretly … Read more