Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-25 13:00 PDT
- Bubble AI app builder abused to steal Microsoft account credentials
BleepingComputer • 2026-03-25 12:48 • www.bleepingcomputer.com
Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building platform Bubble to generate and host malicious web apps. […]
https://www.bleepingcomputer.com/news/security/bubble-ai-app-builder-abused-to-steal-microsoft-account-credentials/ - New Torg Grabber infostealer malware targets 728 crypto wallets
BleepingComputer • 2026-03-25 11:32 • www.bleepingcomputer.com
A new info-stealing malware called Torg Grabber is stealing sensitive data from 850 browser extensions, more than 700 of them for cryptocurrency wallets. […]
https://www.bleepingcomputer.com/news/security/new-torg-grabber-infostealer-malware-targets-728-crypto-wallets/ - SmartApeSG campaign pushes Remcos RAT, NetSupport RAT, StealC, and Sectop RAT (ArechClient2), (Wed, Mar 25th)
SANS ISC Diary (full) • 2026-03-25 10:44 • isc.sans.eduIntroduction
- LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace
The Hacker News • 2026-03-25 10:35 • thehackernews.com
The alleged administrator of the LeakBase cybercrime forum has been arrested by Russian law enforcement authorities, state media reported Thursday.
According to TASS and MVD Media, a news website linked to the Russian Interior Ministry, the suspect is a resident of the city of Taganrog. The suspect is said to have been detained for creating and managing a criminal site that allowed stolen
https://thehackernews.com/2026/03/leakbase-admin-arrested-in-russia-over.html - Citrix urges admins to patch NetScaler flaws as soon as possible
BleepingComputer • 2026-03-25 08:52 • www.bleepingcomputer.com
Citrix has patched two NetScaler ADC and NetScaler Gateway vulnerabilities, one of which is very similar to the CitrixBleed and CitrixBleed2 flaws exploited in zero-day attacks in recent years. […]
https://www.bleepingcomputer.com/news/security/citrix-urges-admins-to-patch-netscaler-flaws-as-soon-as-possible/ - GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data
The Hacker News • 2026-03-25 07:26 • thehackernews.com
Cybersecurity researchers have flagged a new evolution of the GlassWorm campaign that delivers a multi-stage framework capable of comprehensive data theft and installing a remote access trojan (RAT), which deploys an information-stealing Google Chrome extension masquerading as an offline version of Google Docs.
“It logs keystrokes, dumps cookies and session tokens, captures screenshots, and
https://thehackernews.com/2026/03/glassworm-malware-uses-solana-dead.html - Paid AI Accounts Are Now a Hot Underground Commodity
BleepingComputer • 2026-03-25 07:02 • www.bleepingcomputer.com
AI accounts are becoming part of the cybercrime supply chain, sold like email accounts or VPS access. Flare Systems shows how underground markets bundle and resell premium AI access at scale. […]
https://www.bleepingcomputer.com/news/security/paid-ai-accounts-are-now-a-hot-underground-commodity/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
