Espresso

Sign in Subscribe

Cybersecurity

2.5M Gulf X-rays Hijacked: Tor Auctions 110 GB, Hospitals Held Hostage

2.5M Gulf X-rays Hijacked: Tor Auctions 110 GB, Hospitals Held Hostage

TL;DR * Payload Ransomware claims 110 GB data breach of Royal Bahrain Hospital, threatens release by March 23 * Microsoft KB5079473 update causes Windows 11 BSODs and C: drive access denials on Samsung Galaxy Book models * Meta to shut down Instagram end-to-end encryption for direct messages by May 8, 2026, citing

550K Veeam Backdoors: 17-Month Ransomware Binge Ends—Fortune 500 Forks the Bill

550K Veeam Backdoors: 17-Month Ransomware Binge Ends—Fortune 500 Forks the Bill

TL;DR * Veeam Backup & Replication patched four critical RCE vulnerabilities (CVE-2026-21666, CVE-2025-21668, CVE-2027-21708) enabling privilege escalation and SSH theft * Erlang OTP 28.4.1 patches critical SSH compression and HTTP request vulnerabilities * SocksEscort Botnet Dismantled: 8,000 Infected Routers Seized Across 2,500 US Homes 💥 550K Veeam Backdoors Shut:

200k PCs Fried, 50TB Looted: $500M Cyber Bonfire Scorches Windows World

200k PCs Fried, 50TB Looted: $500M Cyber Bonfire Scorches Windows World

TL;DR * Iran-linked hacktivist group Handala claims responsibility for global Stryker cyberattack, wiping 200,000+ systems and exfiltrating 50TB of data * MediaTek Dimensity 7300 flaw lets attackers extract PINs and crypto seed phrases in under 45 seconds via USB * Meta deploys AI-driven scam detection, removing 159M scam ads and 11M

120 Ukraine Gov Boxes Hacked 8 Yrs—Europe’s 2008 Servers Next Target

120 Ukraine Gov Boxes Hacked 8 Yrs—Europe’s 2008 Servers Next Target

TL;DR * ESET-SlimAgent and Xagent cyber threats detected in Ukraine and Russia, targeting critical infrastructure with malware * Iran-linked APT28 deploys BeardShell and Covenant implants for long-term espionage against Ukrainian military targets * AI-powered phishing and deepfakes surge as attackers reduce cost of social engineering by over 95%, per 2026 threat report

OK Bot Hacks Dutch Gov: 30+ Accounts Compromised — SMS 2FA Still Alive in 2026

OK Bot Hacks Dutch Gov: 30+ Accounts Compromised — SMS 2FA Still Alive in 2026

TL;DR * Russian state-sponsored hackers compromise WhatsApp and Signal accounts via phishing authentication codes * Cybercriminals exploit misconfigured Salesforce Experience Cloud sites using customized AuraInspector tool to harvest data for social engineering * ScamAgent AI framework developed at Rutgers University bypasses safety guardrails to simulate realistic social engineering attacks 🤖 30+ Gov Accounts

45M Ransomware Payoff Exposes Corporate Cyber Delusion — UK, US, and EU Firms Most Exposed

45M Ransomware Payoff Exposes Corporate Cyber Delusion — UK, US, and EU Firms Most Exposed

TL;DR * Akira ransomware generated $45M in illicit payments in 2025, leveraging AI and double extortion tactics against 2,207 North American victims * U.S. regulators block mandatory age verification on Discord after privacy backlash and data breach * LLMs like GPT-5.2 and Claude 4.5 Opus detect conversation history

42,000 iPhones Hacked — iOS 13 Still Running Amid $75B Crypto Losses: Apple’s Patch Ignored

42,000 iPhones Hacked — iOS 13 Still Running Amid $75B Crypto Losses: Apple’s Patch Ignored

TL;DR * Google uncovers Coruna iOS exploit kit targeting 23 vulnerabilities across iOS 13–17.2.1 to steal crypto seed phrases * Critical CVE-2026-1492 vulnerability exploited in 60,000+ WordPress sites allows unauthenticated admin access * Wikimedia Foundation hit by self-propagating JavaScript worm modifying 3,996 pages and over 85 users&