The Mistic backdoor is being deployed by ransomware access broker KongTuke in targeted attacks against insurance companies, educational institutions, and IT firms.
Multiple vulnerabilities in NGINX products compromise availability, integrity, and system security; extensive data manipulation and code execution are possible.
The BSI is investigating the security implications of widespread AI adoption and providing guidance for integrating new threats into existing cybersecurity strategies.
User vigilance is not a suitable defense strategy against AI-generated phishing attacks; instead, organizations should structure their processes by trust levels and continuously review fast paths.
Cybercriminals increasingly exploit supply chains and shared infrastructure as attack vectors, with commercialized tools such as Tycoon 2FA (89 percent market share) enabling even less sophisticated actors.
CVE-2026-20230 (CVSS 8.6) in Cisco Unified CM and CM SME is being actively exploited – unencrypted HTTP requests enable remote write access without authentication.