SC Staff

Trapdoor ad fraud campaign used hundreds of Android apps

• application-security

Trapdoor ad fraud campaign used hundreds of Android apps

SC Staff May 22, 2026

The Trapdoor campaign initially distributed seemingly legitimate utility apps, such as PDF readers, through the Google Play...

Read More Read more about Trapdoor ad fraud campaign used hundreds of Android apps

Wahlap data leak exposes 18.9 million records from WeChat mini-program ecosystem

• data-security

Wahlap data leak exposes 18.9 million records from WeChat mini-program ecosystem

SC Staff May 21, 2026

Security researchers discovered an open Elasticsearch instance belonging to Wahlap, a prominent arcade game manufacturer that collaborates...

Read More Read more about Wahlap data leak exposes 18.9 million records from WeChat mini-program ecosystem

Deleted Google API keys remain active for up to 23 minutes, study finds

• api-security

Deleted Google API keys remain active for up to 23 minutes, study finds

SC Staff May 21, 2026

While the Google Cloud Platform console indicates immediate deletion, researchers found that keys take an average of...

Read More Read more about Deleted Google API keys remain active for up to 23 minutes, study finds

New Linux malware ‘Showboat’ targets Middle East telecom provider

• malware

New Linux malware ‘Showboat’ targets Middle East telecom provider

SC Staff May 21, 2026

Showboat is believed to be utilized by Chinese-affiliated threat actors, with command-and-control infrastructure linked to Chengdu, China.

Read More Read more about New Linux malware ‘Showboat’ targets Middle East telecom provider

‘First VPN’ service used by cybercriminals dismantled in international operation

• threat-intelligence

‘First VPN’ service used by cybercriminals dismantled in international operation

SC Staff May 21, 2026

First VPN marketed itself on Russian-speaking cybercrime forums as a reliable tool for anonymity, offering features like...

Read More Read more about ‘First VPN’ service used by cybercriminals dismantled in international operation

Nvidia releases driver updates to fix 14 critical vulnerabilities

• vulnerability-management

Nvidia releases driver updates to fix 14 critical vulnerabilities

SC Staff May 21, 2026

The vulnerabilities affect GeForce, RTX, Quadro, Tesla, and NVS product lines, as well as vGPU and Cloud...

Read More Read more about Nvidia releases driver updates to fix 14 critical vulnerabilities

Socket raises $60 million for its open-source security platform

• supply-chain

Socket raises $60 million for its open-source security platform

SC Staff May 21, 2026

The investment, led by Thrive Capital with participation from Andreessen Horowitz and Capital One Ventures, brings Socket's...

Read More Read more about Socket raises $60 million for its open-source security platform

Microsoft releases new AI red teaming tools for developers

• aiml

Microsoft releases new AI red teaming tools for developers

SC Staff May 21, 2026

As reported by CyberScoop, Microsoft has released two new open-source tools, Rampart and Clarity, designed to enhance...

Read More Read more about Microsoft releases new AI red teaming tools for developers

Teenager from Odesa suspected of running infostealer malware operation

• malware

Teenager from Odesa suspected of running infostealer malware operation

SC Staff May 21, 2026

The suspect allegedly used information-stealing malware between 2024 and 2025 to infect user devices, aiming to steal...

Read More Read more about Teenager from Odesa suspected of running infostealer malware operation

Attackers exploit SonicWall VPN vulnerability to bypass MFA

• vulnerability-management

Attackers exploit SonicWall VPN vulnerability to bypass MFA

SC Staff May 21, 2026

The vulnerability, CVE-2024-12802, allows threat actors to bypass MFA on SonicWall Gen6 SSL-VPN appliances by using a...

Read More Read more about Attackers exploit SonicWall VPN vulnerability to bypass MFA