Coinspect has confirmed one coordinated sweep on May
Category Added in a WPeMatico Campaign
Ransomware Negotiator Gets 70 Months in Prison for Aiding BlackCat Attacks
In a sentencing memorandum, federal prosecutors described Martino as a “
Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate Orgs
“Operators rely on automated scraping tooling with custom or legitimate-sounding user agents, leveraging GitHub ‘ghost’ accounts that are often years old, or compromised OAuth tokens and personal
New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware
Each is a different way to break a machine: wipe the whole disk, overwrite the Windows drive, or run fake “ransomware” that scrambles files with a key it never saves
npm 12 Disables Install Scripts by Default to Reduce Supply Chain Risk
The Microsoft-owned subsidiary noted that the following npm install behaviors that used to run automatically before have been made opt-in –
allowScripts defaults to off, meaning
ThreatsDay: Cloud Bucket Hijacking, Windows LPE Chain, Global Fraud Bust + 17 More Stories
This week is full of that kind of damage. Not loud. Not clever. Just small gaps doing big jobs. The worst part is how normal it all looks until the bill arrives.
The full ThreatsDay list is below.
Global
AI Attacks Move in Minutes. Join This Webinar on Building a Defense That Keeps Up
That is the gap, and it is not your fault. The tools and runbooks most teams run on were built for attackers who work at human speed. AI-driven
Summer of Clearinghouses
GodDamn Ransomware Uses PoisonX Driver to Disable Endpoint Defenses
According to a new report published by the Threat Hunter Team from Symantec, the ransomware was first publicly spotted in the wild on May 21, 2026. It’s assessed to be a rebrand of the Beast ransomware,
Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges
The vulnerability, tracked as CVE-2026-50656 (CVSS score: 7.8), is a privilege escalation issue in the Microsoft Malware Protection Engine (“mpengine.dll”), which provides scanning, detection, and cleaning capabilities for its antivirus and
