Summary On May 26, 2026, the notorious ransomware group SpaceBears claimed responsibility for a cyberattack against BASE S.p.A. (basespa.com), a prominent Italian logistics and inspection services company. The threat actor has threatened to leak sensitive data unless negotiations are initiated. Incident Report Field Details Target BASE S.p.A. Domain basespa.com Country Italy Attacking Group SpaceBears Date...Read More

A ransomware gang claims to have hacked MyPillow, the company founded by 2020 election conspiracy theorist and Minnesota gubernatorial candidate Mike Lindell. In a post to its blog on the dark web on Monday, the ransomware gang known as “Play” said it was able to steal a wide range of private information from the Minnesota-based...Read More

The Tel Aviv-based cybersecurity firm Gambit Security has linked a destructive hacking campaign to Iran’s Ministry of Intelligence and Security. The campaign targeted organizations across four countries, including the Los Angeles County Metropolitan Transportation Authority. The hackers stole at least 700 gigabytes of emails, backups, and other files from the LA transit authority, an intrusion...Read More

From left: Larry Smalheiser, Managing Director at WOC | Signal, Dylan Natter, Chief Executive Officer & Founder at centrexIT, Andrea Saxenhofer, Associate Director at WOC | Signal, Grant Wright, CEO & Managing Partner at (W)right On Communications, Julie WOC | Signal logo centrexIT logo centrexIT understands how critical secure infrastructure, cyber resilience and managed IT...Read More

Meta Platforms wants age verification checks handled through smartphone operating systems rather than individual apps. The UK government is considering whether under-16s should be banned from social media platforms. Police chiefs and regulators are calling for stricter protections for children online. Meta Platforms is urging the UK government to place age verification checks directly into...Read More

As part of Mumsnet’s Rage Against the Screen campaign, launched a couple of years ago, we used billboard and online adverts styled like cigarette packet health warnings. Some people thought that was provocative. It was meant to be. Today, it feels like the experts are catching up with our thinking. A report released by the...Read More

The intense scrutiny that organizations face after highly publicized ransomware attacks has become one of the defining features in this era of cyberattacks, as regulators, customers and shareholders all look for answers. The consequences are often highly visible and public attention can last for months; from schools forced to close down, manufacturers halting production lines...Read More

Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and disinformation campaigns inside the European Union. The two men were the focus of a 2025 KrebsOnSecurity story about how their hosting companies had assumed control over the...Read More

In the long history of hacking, there have been numerous data breaches that, years or even decades later, remain unsolved. Countless hackers and hacking groups behind them have never been unmasked.   But prolific hacking groups do get caught. This is true whether they’re cybercriminals such as LAPSUS$, a notorious extortion gang that compromised companies including Microsoft and Nvidia, who have had multiple members arrested, or sophisticated...Read More

The FBI is warning about a phishing-as-a-service platform, called Kali365, that allows hackers to access Microsoft 365 tokens and bypass multifactor authentication without a user’s credentials.  The Kali365 platform subscription lets hackers access OAuth tokens and gain persistent access to the M365 environments of targeted organizations or individuals, according to an FBI advisory released Thursday. The...Read More