Ravie LakshmananJun 18, 2026Remote Access Trojan / Ransomware Threat actors associated with the DragonForce ransomware have been observed using a custom Go-based remote access trojan (RAT) called Backdoor.Turn to conceal command-and-control (C2) traffic inside Microsoft Teams relay infrastructure. According to findings from Broadcom-owned Symantec and Carbon Black, the backdoor was deployed against a major U.S....Read More
Multiple WordPress plugins from ShapedPlugin were compromised in a supply chain attack that distributed infected releases to paying customers via the vendor’s official update system. The malware delivered this way installed a fake plugin that impersonates WooCommerce components, steals credentials, and grants operators remote file-writing capabilities. ShapedPlugin is a WordPress plugin vendor specializing in front-end/UI...Read More
North Carolina’s Department of Information Technology announced Thursday that it has selected Tanium as the statewide endpoint management and cybersecurity platform for SecureNC, the state’s collaborative cybersecurity program that provides resources and guidance to state and local agencies. According to the Thursday announcement, Tanium will help consolidate the state’s management and security operations on a...Read More
The arrest of a security guard attached to an Islamiyya school in Kebbi State over the alleged sexual assault of a 10-year-old girl has renewed concerns about the safety of children in religious learning centres and the need for stronger child-protection measures in schools. The Kebbi State Police Command said it had arrested a 36-year-old...Read More
International law enforcement agencies cleaned nearly 15,000 malware-infected WordPress websites and took down more than 100 servers linked to the SocGholish botnet and the Evil Corp Russian cybercrime group. This joint action (supported by Europol and Eurojust) was part of Operation Endgame, a major law enforcement operation now aimed at disrupting a key infection chain...Read More
As a parent, I support the social media ban for under-16s. My kids have tablets and Switches. They have access because I want them to grow up with technology as part of their world. But do I want the reassurance of knowing they’re not going to be messaged by people I don’t trust or see...Read More
Old Passwords, Fresh Victims Two cybersecurity firms say a single hacking crew has quietly broken into tens of thousands of Fortinet firewalls and VPNs run by major companies worldwide. The campaign, named FortiBleed, skips the usual playbook. There is no secret software flaw and no exotic exploit. The attackers simply logged in with passwords that...Read More
Rob Embers, CEO of CallFort CallFort Company launches new consumer protection platform designed to stop fraudulent calls, protect personal data, and restore trust in phone communication The real threat today is access. Access to your phone, your attention, your data, and ultimately your identity. The scam epidemic isn’t just a fraud problem. It’s an access...Read More
Cybercriminals linked to the DragonForce ransomware group recently compromised a US services firm and concealed their malicious traffic by abusing Microsoft Teams’ relay infrastructure. According to research from Broadcom’s Symantec and Carbon Black threat hunter teams, the attackers used a newly identified, custom-built backdoor to keep their activity hidden inside trusted business traffic. The malicious...Read More
The Lead Resource for Safe Schools Lagos, Dr Bisi Akin-Alabi, has called on the Federal Government to create a harmonised, legally binding national school safety policy to address the persistent kidnapping of schoolchildren across Nigeria. She made the call during a special session of the Renewed Hope global virtual town hall conference, themed: ‘Safe schools,...Read More