Hackers hijack .arpa domain for phishing scams — hosting malicious websites and domains where no one can spot them

New phishing attacks weaponize the internet’s backbone using .arpa domains and clever tricks to evade security systems ...
Opinion

Suspected Nork digital intruders caught breaking into US healthcare, education orgs

Who is knocking at the Dohdoor? Digital intruders with possible links to North Korea have been infecting US education and healthcare sectors with a never-before-seen backdoor since at least December, ...
The Hacker News

UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor

Cisco Talos tracks UAT-10027 targeting U.S. education and healthcare with Dohdoor DoH-based backdoor and Cobalt Strike ...
Ada Derana

Iran internet blackout continues with no end in sight

For more than 36 hours, internet access has been largely blocked in Iran after US and Israeli strikes on the country, ...

Supply chain worm with its own MCP server spreads via GitHub

A new malware is circulating in the npm ecosystem, stealing credentials and CI secrets and spreading autonomously.
WinBuzzer

Leaked Code Reveals OpenAI’s Secret Government Surveillance Network

Researchers have exposed OpenAI's covert Persona watchlist, active since 2023, screening users for government agencies via 53 ...
Network World

ControlMonkey extends configuration disaster recovery to cloud network vendors

New support for Cloudflare, Akamai, Fastly, and F5 targets ransomware and misconfiguration recovery for network control plane ...
Security Boulevard

A fake FileZilla site hosts a malicious download

A tampered copy of FileZilla quietly contacts attacker-controlled servers using encrypted DNS traffic that can slip past ...
Techrights

Links 03/03/2026: "No one wants to read your AI slop" and "chatbots in the kill chain"

The circuit court now expects the Trump administration to file a brief by March 20 explaining why it appealed the district ...