Breaking News – Cyber Threats (last 6h)
Generated: 2026-02-26 12:00 PST
- Aeternum C2 Botnet Stores Encrypted Commands on Polygon Blockchain to Evade Takedown
The Hacker News • 2026-02-26 10:00 • thehackernews.com
Cybersecurity researchers have disclosed details of a new botnet loader called Aeternum C2 that uses a blockchain-based command-and-control (C2) infrastructure to make it resilient to takedown efforts.
“Instead of relying on traditional servers or domains for command-and-control, Aeternum stores its instructions on the public Polygon blockchain,” Qrator Labs said in a report shared with The
https://thehackernews.com/2026/02/aeternum-c2-botnet-stores-encrypted.html - Trend Micro warns of critical Apex One code execution flaws
BleepingComputer • 2026-02-26 09:58 • www.bleepingcomputer.com
Trend Micro has patched two critical Apex One vulnerabilities that allow attackers to gain remote code execution (RCE) on vulnerable Windows systems. […]
https://www.bleepingcomputer.com/news/security/trend-micro-warns-of-critical-apex-one-rce-vulnerabilities/ - European DYI chain ManoMano data breach impacts 38 million customers
BleepingComputer • 2026-02-26 09:35 • www.bleepingcomputer.com
DIY store chain ManoMano is notifying customers of a data breach personal data, which was caused by hackers compromising a third-party service provider. […]
https://www.bleepingcomputer.com/news/security/european-dyi-chain-manomano-data-breach-impacts-38-million-customers/ - Critical Juniper Networks PTX flaw allows full router takeover
BleepingComputer • 2026-02-26 08:42 • www.bleepingcomputer.com
A critical vulnerability in the Junos OS Evolved network operating system running on PTX Series routers from Juniper Networks could allow an unauthenticated attacker to execute code remotely with root privileges. […]
https://www.bleepingcomputer.com/news/security/critical-juniper-networks-ptx-flaw-allows-full-router-takeover/ - Olympique Marseille confirms 'attempted' cyberattack after data leak
BleepingComputer • 2026-02-26 08:11 • www.bleepingcomputer.com
French professional football club Olympique de Marseille has confirmed a cyberattack after a threat actor claimed on Monday that it breached the club’s systems earlier this month. […]
https://www.bleepingcomputer.com/news/security/olympique-marseille-football-club-confirms-cyberattack-after-data-leak/ - UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor
The Hacker News • 2026-02-26 07:17 • thehackernews.com
A previously undocumented threat activity cluster has been attributed to an ongoing malicious campaign targeting education and healthcare sectors in the U.S. since at least December 2025.
The campaign is being tracked by Cisco Talos under the moniker UAT-10027. The end goal of the attacks is to deliver a never-before-seen backdoor codenamed Dohdoor.
“Dohdoor utilizes the DNS-over-HTTPS (DoH)
https://thehackernews.com/2026/02/uat-10027-targets-us-education-and.html - ThreatsDay Bulletin: Kali Linux + Claude, Chrome Crash Traps, WinRAR Flaws, LockBit & 15+ Stories
The Hacker News • 2026-02-26 06:28 • thehackernews.com
Nothing here looks dramatic at first glance. That’s the point. Many of this week’s threats begin with something ordinary, like an ad, a meeting invite, or a software update.
Behind the scenes, the tactics are sharper. Access happens faster. Control is established sooner. Cleanup becomes harder.
Here is a quick look at the signals worth paying attention to.AI-powered command
https://thehackernews.com/2026/02/threatsday-bulletin-kali-linux-claude.html - Ransomware payment rate drops to record low as attacks surge
BleepingComputer • 2026-02-26 06:00 • www.bleepingcomputer.com
The number of ransomware victims paying threat actors has dropped to 28% last year, an all-time low, despite a significant increase in the number of claimed attacks. […]
https://www.bleepingcomputer.com/news/security/ransomware-payment-rate-drops-to-record-low-as-attacks-surge/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
