Aggregator

A misconfigured server hosted on a Russian bulletproof hosting provider has exposed the complete operational toolkit of a TheGentlemen ransomware affiliate, including harvested victim credentials and plaintext authentication tokens used to establish hidden remote access tunnels. TheGentlemen ransomware group operates as a Ransomware-as-a-Service, or RaaS, operation where affiliates carry out attacks using shared tools and […]

The post Exposed Server Reveals TheGentlemen Ransomware Toolkit, Victim Credentials, and Ngrok Tokens appeared first on Cyber Security News.

You must login to view this content

You must login to view this content

A suspected North Korean operative tried to sneak into a remote job at a cybersecurity firm by using a stolen identity, a fake AI-generated resume, and a VoIP phone number. The case, uncovered in June 2025, shows how North Korea’s state-sponsored IT worker scheme has grown more sophisticated and harder to spot without proper screening. […]

The post North Korean IT Worker Allegedly Used Stolen Identity and AI Resume in Job Application Scam appeared first on Cyber Security News.

RSAC 2026 Conference marked a return to form, more vibrant and better attended than any show I can recall over the past decade. The audience was distinctly international, with strong representation from North America, Europe and Latin America, and it was refreshing to see the energy and overall vibe of the show return to what I remember from RSA at its peak. As expected, hot topics centered on how AI is transforming cybersecurity, alongside growing … More →

The post RSAC 2026 is back, and the certificate automation gap is impossible to ignore appeared first on Help Net Security.

A new and dangerous piece of malware has surfaced in the threat landscape, and it is built to stay hidden, stay running, and stay in control of any system it infects. CrySome RAT is written in C# and targets the .NET ecosystem, giving attackers complete remote control over compromised Windows machines. From stealing passwords and […]

The post CrySome RAT Emerges as Advanced .NET Malware With AV Killer and HVNC Capabilities appeared first on Cyber Security News.

Iranian state-linked hackers published emails stolen from FBI Director Kash Patel’s personal account. The lesson for every security leader: no title protects you from an exposed digital footprint. On March 27, 2026, the Handala Hack Team, a group U.S. prosecutors have formally tied to Iran’s Ministry of Intelligence and Security, announced it had breached FBI […]

The post What the FBI Director Breach Reveals About Executive Digital Exposure appeared first on Security Boulevard.