identity

Chrome extension ‘QuickLens’ removed after stealing crypto and spreading malware

• identity
• phishing
• supply-chain

Chrome extension ‘QuickLens’ removed after stealing crypto and spreading malware

SC Staff March 2, 2026

The malicious version 5.8 of QuickLens was pushed to approximately 7,000 users on February 17, 2026, after...

Read More Read more about Chrome extension ‘QuickLens’ removed after stealing crypto and spreading malware

ExpressVPN launches Identity Defender app for enhanced fraud protection

• identity

ExpressVPN launches Identity Defender app for enhanced fraud protection

SC Staff March 2, 2026

The Identity Defender app consolidates existing identity protection features from ExpressVPN, such as ID alerts, insurance, and...

Read More Read more about ExpressVPN launches Identity Defender app for enhanced fraud protection

Man pleads guilty to operating AI fake ID website OnlyFake

• identity

Man pleads guilty to operating AI fake ID website OnlyFake

SC Staff March 2, 2026

Yurii Nazarenko, 27, admitted to running the subscription-based platform, which created counterfeit passports, driver's licenses, and Social...

Read More Read more about Man pleads guilty to operating AI fake ID website OnlyFake

Report finds shift toward identity-based cyberattacks

• identity

Report finds shift toward identity-based cyberattacks

SC Staff February 27, 2026

Infosecurity Magazine reports that accelerated breaches, automation, and converging cyber tactics were observed to be prevalent last...

Read More Read more about Report finds shift toward identity-based cyberattacks

Google API keys for Gemini AI pose security risk

• identity

Google API keys for Gemini AI pose security risk

SC Staff February 27, 2026

The issue arises because Google Cloud API keys, once used solely for extending functionality like embedding maps...

Read More Read more about Google API keys for Gemini AI pose security risk

North Korea’s Lazarus Group targets US, Middle East healthcare sectors

• identity
• malware
• ransomware
• threat-intelligence
• threat-management

North Korea’s Lazarus Group targets US, Middle East healthcare sectors

Steve Zurier February 24, 2026

Threat actor focuses on identity-based attacks followed by a ransomware drop.

Read More Read more about North Korea’s Lazarus Group targets US, Middle East healthcare sectors

SANDWORM_MODE: Shai-Hulud with an AI twist

• identity
• malware
• supply-chain

SANDWORM_MODE: Shai-Hulud with an AI twist

Laura French February 24, 2026

A new npm supply chain attack injects a malicious MCP server and targets LLM API keys.

Read More Read more about SANDWORM_MODE: Shai-Hulud with an AI twist

Threat group leverages LLMs to compromise 600 FortiGate firewalls

• identity
• ssomfa
• threat-intelligence
• threat-management

Threat group leverages LLMs to compromise 600 FortiGate firewalls

Steve Zurier February 23, 2026

Amazon Threat Intelligence said the attacks happened over five weeks in 55 countries.

Read More Read more about Threat group leverages LLMs to compromise 600 FortiGate firewalls

New device code vishing campaign sets sights on Microsoft Entra accounts

• identity
• phishing
• Privacy

New device code vishing campaign sets sights on Microsoft Entra accounts

SC Staff February 20, 2026

Manufacturing, technology, and financial entities are having their Microsoft Entra accounts subjected to combined device code phishing...

Read More Read more about New device code vishing campaign sets sights on Microsoft Entra accounts