A mysterious neutrino signal has led astronomers to a surprising discovery: a hidden star-forming galaxy, not a supermassive black hole, may be generating some of the Universe’s most powerful particles.
Get the latest international news and world events from around the world.
Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered
A coordinated law enforcement operation, in partnership with private sector companies, including Bitdefender, Bitsight, ESET, and Microsoft, has resulted in the takedown of criminal infrastructure powering Amadey and StealC.
“The main common goal was to disrupt the ‘assembly lines’ cybercriminals use to launch ransomware, financial fraud, and attacks on critical infrastructure,” Europol said in a statement.
The development comes days after authorities from the Netherlands, Canada, Germany, and the U.S. disrupted malicious infrastructure associated with SocGholish and cleaned up nearly 15,000 infected WordPress websites.
Google releases new privacy controls for activity history, personalization
Google is rolling out new privacy controls for Search services and Google Play, giving you more control over saved history and personalized recommendations.
In an email titled “New privacy settings for Search services,” sent to users and seen by Bleeping Computer, Google said it is “updating our settings to give you even more control over saved history and personalized recommendations across Google Search services and Google Play.”
Google noted that Search services include “Search, Maps, Shopping, Hotels, Flights, Translate, and News,” and users will see the change in their Google Account in the next few days.
Mandiant reveals how Cisco SD-WAN zero-day attacks gained root access
New details have been revealed on how hackers exploited a Cisco Catalyst SD-WAN vulnerability tracked as CVE-2026–20245 in zero-day attacks to create rogue root accounts on targeted devices.
The CVE-2026–20245 vulnerability is a high-severity command injection flaw in Cisco Catalyst SD-WAN Manager (vManage), Controller (vSmart), and Validator (vBond) that allows authenticated attackers to execute arbitrary commands as root by uploading a crafted file.
Cisco said the vulnerability stemmed from insufficient validation of user-supplied input and could be exploited by authenticated attackers with local access to affected devices.
Malicious Edge extension abuses Native Messaging as bridge to malware
A malicious Microsoft Edge extension dubbed ‘Edgecution’ has been used in a ransomware attack to escape the browser sandbox and deploy a Python-based backdoor.
Access to the local system is obtained by leveraging the Chrome Native Messaging protocol that allows browser extensions to interact with native desktop applications, such as a password manager communicating with the extension to fill in web forms.
This allows the browser to launch the native application as a separate process and communicates with it over standard input/output data streams.
New modular nanorobot can move, dock to cancer cells, deliver therapy, and be reused
Basel researchers built a modular nanorobot that can move, dock to cancer cells, deliver therapy, and be reused.