SC Staff

OnyxC2 stealer sold as a service targets over 210 applications

• malware

OnyxC2 stealer sold as a service targets over 210 applications

SC Staff June 11, 2026

OnyxC2 is being sold on cybercrime forums for as little as $250 per month, with developers offering...

Read More Read more about OnyxC2 stealer sold as a service targets over 210 applications

AudiA6 cryptocurrency service dismantled for allegedly laundering over $380 million

• ransomware

AudiA6 cryptocurrency service dismantled for allegedly laundering over $380 million

SC Staff June 11, 2026

Europol reported that AudiA6 facilitated an industrial-scale cryptocurrency laundering operation, utilizing thousands of fraudulent exchange accounts opened...

Read More Read more about AudiA6 cryptocurrency service dismantled for allegedly laundering over $380 million

Siemens Desigo CC patch files falsely flagged as malware

• patchconfiguration-management

Siemens Desigo CC patch files falsely flagged as malware

SC Staff June 11, 2026

The issue affects patch files for Desigo CC versions 7 through 9.

Read More Read more about Siemens Desigo CC patch files falsely flagged as malware

CISA directs federal agencies on prioritization of cyber vulnerabilities

• patchconfiguration-management

CISA directs federal agencies on prioritization of cyber vulnerabilities

SC Staff June 10, 2026

The new directive, BOD 26-04, mandates that federal agencies focus on vulnerabilities that affect publicly exposed assets,...

Read More Read more about CISA directs federal agencies on prioritization of cyber vulnerabilities

JDY botnet expands, enabling rapid exploitation of disclosed vulnerabilities

• threat-intelligence

JDY botnet expands, enabling rapid exploitation of disclosed vulnerabilities

SC Staff June 10, 2026

Initially flagged as part of the KV-botnet, JDY has evolved into an independent reconnaissance capability following the...

Read More Read more about JDY botnet expands, enabling rapid exploitation of disclosed vulnerabilities

Ransomware group The Gentlemen linked to Russian national

• ransomware

Ransomware group The Gentlemen linked to Russian national

SC Staff June 10, 2026

The Gentlemen ransomware group, as analyzed by Check Point Software, operates on a ransomware-as-a-service model, attracting skilled...

Read More Read more about Ransomware group The Gentlemen linked to Russian national

ShinyHunters gang targets Oracle PeopleSoft servers in data theft attacks

• data-security

ShinyHunters gang targets Oracle PeopleSoft servers in data theft attacks

SC Staff June 10, 2026

The ShinyHunters gang is exploiting a combination of old and zero-day vulnerabilities, referred to as a "gadget...

Read More Read more about ShinyHunters gang targets Oracle PeopleSoft servers in data theft attacks

Scammers use short videos on social media to spread Vidar infostealer

• phishing

Scammers use short videos on social media to spread Vidar infostealer

SC Staff June 10, 2026

This new attack method, reported by ReversingLabs, involves creating seemingly helpful tutorial videos that promise free access...

Read More Read more about Scammers use short videos on social media to spread Vidar infostealer

Zscaler expands zero-trust SASE platform with AI-driven management

Zscaler expands zero-trust SASE platform with AI-driven management

SC Staff June 10, 2026

The expanded SASE platform features the ZAgent Framework, enabling administrators to manage configurations, troubleshooting, and policies using...

Read More Read more about Zscaler expands zero-trust SASE platform with AI-driven management

NPM v12 to block supply-chain attacks with new security measures

• supply-chain

NPM v12 to block supply-chain attacks with new security measures

SC Staff June 10, 2026

The upcoming npm v12 will introduce stricter security protocols for the "npm install" command, a critical step...

Read More Read more about NPM v12 to block supply-chain attacks with new security measures