CIRCLE WITH A DOT

New #macOS Reaper malware campaign uses fake Microsoft domains to steal passwords, browser data, and crypto wallets with users tricked into running malicious Terminal commands and fake installers. Read: https://hackread.com/reaper-malware-fake-microsoft-domain-macos-passwords/#CyberSecurity #Malware #Phishing #Microsoft

Verber Dental Group Data Breach Exposes Patient Health and Personal InformationVerber Dental Group, a Pennsylvania-based dental organization, suffered a two-day network breach in January 2026 that exposed the personal and health information of an undisclosed number of patients.****#cybersecurity #infosec #incident #databreachhttps://beyondmachines.net/event_details/verber-dental-group-data-breach-exposes-patient-health-and-personal-information-7-z-4-b-p/gD2P6Ple2L

Project Glasswing and the Claude Mythos Preview have sparked a lot of conversation around how #AI could reshape vulnerability discovery and exploit development, but there’s more nuance to the story.On Nexus, former NSA Director Adm. Michael S. Rogers shares why they may do more to level the playing field between defenders and threat actors than many realize, and what this means for #cybersecurity moving forward. Read herehttps://nexusconnect.io/articles/exploring-some-nuance-on-project-glasswing #ProjectGlasswing #Claude #MythosPreview

(trendmicro.com) Agentic Governance: Securing Autonomous AI Systems Within the Trust BoundaryAutonomous AI agents operating within trust boundaries pose a critical insider threat, executing unintended actions at machine speed using valid credentials. Conventional security tools fail to detect anomalies in authenticated workflows, necessitating agentic governance.In brief - Autonomous AI agents with delegated authority introduce insider-like threats, including prompt injection and rapid damage escalation. Agentic governance—identity, authority, action control, and evidence—is essential to mitigate risks from compromised or misaligned agents.Technically - AI agents leverage delegated credentials to perform legitimate-looking actions, evading detection. Key risks: scope expansion via action chaining, prompt injection via malicious inputs, and velocity through rapid API calls. Mitigation requires agent inventories, granular permissions, approval gates, and end-to-end logging of decision chains. Runtime policy checks and narrative-driven logs are critical to detect unintended actions before propagation.Source: https://www.trendmicro.com/en_us/research/26/e/agentic-governance-why-it-matters-now.html#Cybersecurity #ThreatIntel

Chanhassen Dinner Theatres in Minnesota reschedules shows after network attack #NetworkAttack #CyberIncident #Minnesota #ChanhassenDinnerTheatres #cybersecurity #ransomware https://dysruptionhub.com/chanhassen-theatres-network-attack/

New ransom group blog posts!Group name: chaosPost title: fallprotect.comInfo: https://cti.fyi/groups/chaos.htmlGroup name: chaosPost title: cstindustries.comInfo: https://cti.fyi/groups/chaos.htmlGroup name: chaosPost title: wtitransport.comInfo: https://cti.fyi/groups/chaos.htmlGroup name: chaosPost title: challenge-mfg.comInfo: https://cti.fyi/groups/chaos.html#ransomware #cti #threatintelligence #cybersecurity #infosec

#chrome extension Token Rewards Claim seems malicious. Its #cybersecurity badness score is 99/100!```json{"id": "koecfhecfkmjkjplbmbclgacdclnnpei", "score": 99, "platform": "chrome", "name": "Token Rewards Claim"}```

@kuketzblog Hast du auch ein Statement zu den Hacking Vorwürfen hinter archive.is und seinen Alternativen?

#chrome extension Solana Monitor seems malicious. Its #cybersecurity badness score is 88/100!```json{"id": "ggijepplmdjopbidkeoeheohojgiclma", "score": 88, "platform": "chrome", "name": "Solana Monitor"}```

#chrome extension Ai Citation Tracker seems malicious. Its #cybersecurity badness score is 86/100!```json{"id": "gpghckfoffcjppkochpddgpjhifpkfhl", "score": 86, "platform": "chrome", "name": "Ai Citation Tracker"}```

https://youtu.be/Hcqh0ZSza50?si=j4z0eXg8eeFbqxD_#privacy #SurveillanceCapitalism #CyberSecurity #security #c22 #StopBillC22 #boycottgoogle Switch to GrapheneOS.https://grapheneos.org/

Cell phone users are increasingly confiding almost everything to their devices, potentially incriminating themselves in various situations. https://arstechnica.com/tech-policy/2026/05/cell-phones-users-cant-stop-incriminating-themselves/#Tech #Cybersecurity

New ransom group blog post!Group name: incransomPost title: metaval.com.auInfo: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec

#chrome extension AdBlock for YouTube - SkipAds: Auto Skip Video Ads seems malicious. Its #cybersecurity badness score is 85/100!```json{"id": "jbdegnmcajkhjemebonejojlgkgcddhc", "score": 85, "platform": "chrome", "name": "AdBlock for YouTube - SkipAds: Auto Skip Video Ads"}```

#chrome extension DGUESTS seems malicious. Its #cybersecurity badness score is 96/100!```json{"id": "ephepidhbiabcalednafkdpllnnohnph", "score": 96, "platform": "chrome", "name": "DGUESTS"}```

@Kdude @librewolf it should be delibrate, let apple users stay safe in their walled garden

Critical Claw Chain Vulnerabilities Expose Thousands of OpenClaw AI ServersCyera Research discovered 'Claw Chain,' a set of four vulnerabilities in the OpenClaw AI agent platform that allow attackers to escape sandboxes, escalate privileges, and steal sensitive credentials. The flaws affect up to 180,000 publicly exposed servers and enable full system takeover by chaining multiple exploits.**If you use OpenClaw (formerly Clawdbot) AI agent platform, update it immediately to the patched version released on April 23, 2026. Place any internet-facing instances behind strong authentication or firewalls, and restrict the agent's access to only the data it truly needs.**#cybersecurity #infosec #advisory #vulnerabilityhttps://beyondmachines.net/event_details/critical-claw-chain-vulnerabilities-expose-thousands-of-openclaw-ai-servers-w-9-n-k-b/gD2P6Ple2L

24 hours of MIRE/C³; the latest stats (Runmode: Neutral 404, delay-only) 3,737 requests from 788 unique IPs Attacker bandwidth cost: 27.5MB Attacker total delay: 5h 3m server time Slowest response: 13.0s #MIREC3 #CyberSecurity #FightingBack

New ransom group blog posts!Group name: qilinPost title: PNSB Insurance Brokers Sdn BhdInfo: https://cti.fyi/groups/qilin.htmlGroup name: qilinPost title: Comercial Echave Turri LimitadaInfo: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec

#chrome extension YOUSELLER - Facilidade, produtividade em escala. seems malicious. Its #cybersecurity badness score is 94/100!```json{"id": "aocojboaoklgedadlpaallelnanhcpgm", "score": 94, "platform": "chrome", "name": "YOUSELLER - Facilidade, produtividade em escala."}```