From Cipher to Fear: The psychology behind modern ransomware extortion

Modern ransomware has shifted from encryption to psychological extortion that exploits fear, liability, and exposure. Flare ...
GitHub

Metasploit Exploit CVE Coverage

This repository provides a daily, automatically updated JSON dataset detailing which exploits within the Metasploit Framework are associated with specific Common Vulnerabilities and Exposures (CVE) ...

AI-powered cyberattack kits are 'just a matter of time,' warns Google exec

Security chief says criminals are already automating workflows, with full end-to-end tools likely within years ...
GitHub

mr-bala-kavi/pentest-metasploitable2

pentest-metasploitable2/ β”‚ β”œβ”€β”€ πŸ“œ README.md # This file β”‚ β”œβ”€β”€ πŸ“‚ scripts/ # Automation Scripts β”‚ β”œβ”€β”€ config.sh # Central configuration β”‚ β”œβ”€β”€ master.sh # Main orchestration script β”‚ β”œβ”€β”€ phase1_recon.sh ...
Microsoft

Phishing actors exploit complex routing and misconfigurations to spoof domains

Phishing actors are exploiting complex routing scenarios and misconfigured spoof protections to effectively spoof organizations’ domains and deliver phishing emails that appear, superficially, to have ...
The Hacker News

ThreatsDay Bulletin: GhostAd Drain, macOS Attacks, Proxy Botnets, Cloud Exploits, and 12+ Stories

The first ThreatsDay Bulletin of 2026 lands on a day that already feels symbolic β€” new year, new breaches, new tricks. If the past twelve months taught defenders anything, it's that threat actors ...
Bleeping Computer

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers. First documented by Fortinet in July ...