Latest news
Databreach
DigiCert Breached via Weaponized Screensaver: Threat Actor Steals EV Code Signing Certificates to Spread Zhong Stealer
7 May 2026 dark6
A sophisticated threat actor breached DigiCert's internal support environment in early April 2026 by tricking analysts into executing a disguised...
Phishing
Email Bombing and Fake IT Support on Microsoft Teams: How Attackers Are Stealing Remote Access
4 May 2026 dark6
Attackers are combining inbox-flooding email bombing with fake IT support personas on Microsoft Teams to trick employees into granting remote...
Phishing
Threat Group UNC6692 Breaches Enterprise Networks via Microsoft Teams Impersonation and SNOW Malware Suite
24 April 2026 dark6
The newly identified threat group UNC6692 is compromising enterprise networks by impersonating IT helpdesk staff on Microsoft Teams, deploying a...
Databreach
Booking.com Data Breach Exposes Customer Reservation Details, Raising Phishing Risk for Travellers
18 April 2026 dark6
Booking.com has notified customers of a data breach that exposed names, addresses, email addresses, phone numbers, and full reservation details....
Spyware
The Sophisticated ClickFix Sting: How Calisto Disguises Itself to Steal Credentials
5 December 2025 dark6
Calisto, a cyberespionage campaign attributed to the Russian FSB’s Center 18 for Information Security (military unit 64829), has been making...
Databreach
DoorDash data breach: a social engineering compromise
18 November 2025 dark6
The recent disclosure by DoorDash regarding a cybersecurity incident, initially attributed to a social engineering attack, warrants a detailed examination...