Malicious 7-Zip Installer Turns PCs Into Proxy Nodes
Cybercriminals are abusing trust in popular software to spread malware at scale. The malicious 7-Zip installer campaign shows how a simple download mistake can quietly turn a personal computer into part of a criminal proxy network. Instead of delivering only the legitimate compression tool, attackers bundled hidden components that operate in the background and grant remote operators control over internet
SmarterTools Breach Triggered by SmarterMail Flaw
The SmarterTools breach did not begin with phishing emails or stolen passwords. Instead, attackers entered the company’s network by exploiting a flaw in SmarterMail, the very product SmarterTools develops and maintains. The incident unfolded on January 29, 2026, when the Warlock ransomware group leveraged an authentication bypass vulnerability to gain control of an unpatched internal server. This breach serves as
Zendesk Spam Wave Returns With Fake Account Activation Emails
A renewed Zendesk spam wave is flooding inboxes worldwide with unsolicited “Activate your account” emails that appear to come from trusted companies. Many recipients never signed up for any service, yet the messages look authentic and often bypass spam filters. The scale and persistence of the campaign have raised concerns among security teams, especially as the emails originate from legitimate
Snapchat Account Hacking Left Hundreds of Accounts Exposed
Snapchat account hacking often succeeds not because of technical flaws, but because attackers understand how to manipulate people. A recent federal case in the United States illustrates this reality clearly, showing how a single individual accessed hundreds of private accounts by exploiting trust rather than exploiting software. The case highlights a growing pattern in cybercrime, where attackers bypass security protections
Signal Account Hijacking Targets Senior German Officials
German authorities have issued a warning after uncovering a targeted Signal account hijacking campaign aimed at senior political, military, and media figures. The attacks do not exploit vulnerabilities in Signal’s encryption or infrastructure. Instead, threat actors rely on social engineering techniques that trick victims into granting account access themselves. Security officials describe the campaign as highly targeted and methodical. The
European Commission Data Breach Hits Staff Systems
A European Commission data breach has exposed internal staff contact information after attackers accessed a system used to manage official mobile devices. Investigators found no evidence that employee phones were directly compromised. However, the incident highlights how backend infrastructure can still become a valuable target. Even limited personal data exposure can create meaningful security risks when attackers use it to
FanDuel Identity Fraud Scheme Leads to Federal Charges
Federal authorities have charged two men accused of running an extensive betting fraud operation that targeted FanDuel and several other regulated gambling platforms. The FanDuel identity fraud case sheds light on how stolen personal information can be scaled into a sustained criminal enterprise when combined with promotional abuse and weak identity verification controls. Investigators say the operation relied on thousands
Panera Bread Data Breach Impacts 5.1 Million Accounts
Panera Bread has confirmed a security incident after stolen customer data surfaced online, prompting confusion over how many people were actually affected. Early reports suggested that as many as 14 million customers had their information exposed, but further analysis shows the real number is significantly lower. The Panera Bread data breach ultimately impacted around 5.1 million unique accounts, not 14
Match Group Data Breach Affects Tinder, Hinge, and OkCupid
Concerns around online privacy resurfaced after news of the Match Group data breach revealed that user information from several major dating platforms had been exposed. The incident affected services used by millions worldwide and raised questions about how attackers gained access and what data may have been taken. Match Group has since confirmed the breach and launched an internal investigation
Operation Switch Off Targets Industrial-Scale Pirate TV Services
Operation Switch Off marks one of the most coordinated international crackdowns on illegal TV and sports streaming in recent years. Law enforcement agencies across multiple countries worked together to dismantle large-scale pirate IPTV services that reached millions of users worldwide. The operation highlights how digital piracy has evolved into a highly organized, cross-border industry with professional infrastructure and significant financial
