Windows BitLocker exploit sparks messy feud between Microsoft and the researcher who exposed it

The issue centers on a zero-day exploit called "YellowKey," published earlier this month by a security researcher known as Chaotic Eclipse, also known online as Nightmare-Eclipse.

AI-built ransomware toolkit automates EDR evasion, AD discovery

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...
Microsoft

The Gentlemen ransomware: Dissecting a self-propagating Go encryptor

Microsoft Threat Intelligence presents a comprehensive analysis of The Gentlemen, a Go-based ransomware deployed by ...
Hackaday

This Week In Security: Ubiquiti Fixes, And FreeBSD Joins The Club You Don’t Want To Join

Ubiquiti released a new security bulletin detailing fixes for six security issues, including one rated 9.1 (critical) and one scoring a perfect 10.0 on the CVE risk scale. The vulnerabilities ...
Cybernews

Vengeful researcher Nightmare-Eclipse gets Microsoft’s attention: “Never justifiable and has real-world consequences”

Microsoft has broken its silence on vindictive researcher Nightmare-Eclipse who released 6 public Windows exploits. It has ...

Dead touchscreen? This Android tool lets you extract files from an unresponsive phone

If you've ever broken your phone's screen but still wanted to get data or files from it, you know how painful that can be, ...

Dashlane Users Locked Out After Password Manager Detects Brute-Force Attack

An unknown number of Dashlane accounts were temporarily suspended after being targeted by a brute-force campaign. Some ...
Bleeping Computer

Hackers exploit FortiClient EMS flaw to push infostealer malware

Hackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS) to deliver an undocumented credential stealer called EKZ. The attacker ...