Financial Services

Stock Exchange Hacked

A global stock exchange was targeted in an espionage operation, with hackers gaining access to a senior executive's email account for 150 days, resulting in data exfiltration. The breach is likely to affect the exchange's operations and potentially its customers. Users are advised to monitor their accounts and report any suspicious activity.

IMA Diligence Data Breach

A data breach at IMA Diligence Services has exposed the personal information of approximately 525,000 individuals. The breach occurred on a legacy server managed by a third party, and affected individuals are advised to monitor their accounts for suspicious activity. Those impacted should also consider taking steps to protect their identity.

UK Banks Gain Access to AI Model

UK banks have been granted access to OpenAI's GPT-5.5 model, a significant development in the financial sector's adoption of AI technology. This access is notable given the exclusion of UK banks from Anthropic's Glasswing expansion. Organizations should assess the potential benefits and risks of integrating AI models into their operations.

Finance Exec Email Breach

A threat actor gained unauthorized

Infostealers Replace Phishing Payloads

Cybercriminals are increasingly using infostealers as phishing payloads due to their ease of use and scalability. This shift affects individuals and organizations who may unknowingly download and install infostealers, potentially compromising sensitive information. To mitigate this threat, users should exercise caution when clicking on links or downloading attachments from unfamiliar sources.

Path Traversal

A critical vulnerability was discovered in dazeb cline-mcp-memory-bank, allowing remote attackers to perform path traversal via the handleInitializeMemoryBank function. Users of this software are at risk, and an exploit is available. Affected users should monitor for updates and consider mitigating measures.

Russian Hackers Target Crypto Wallets

A Russian-speaking hacker has been linked to a series of attacks on cryptocurrency wallets,

Visa Reports Rise in AI-Enabled Scams

According to Visa's Spring 2026 Biannual Threats Report, scams are becoming a growing consumer risk due to AI-enabled impersonation

Crypto Wallet Theft

A new type of crypto drainer is emerging, using phishing and automation to steal from cryptocurrency wallets. Users of cryptocurrency wallets are

Ledger Bitcoin App Vulnerability

A vulnerability has been identified in the Ledger Bitcoin app up to versions 2.1.0 and 2.1.1, affecting the Miniscript Policy Handler component. This vulnerability can lead to incorrect calculation when a manipulation is executed, potentially targeting the physical device. Users are recommended to upgrade the affected component to mitigate the issue

Ledger Bitcoin App Address Derivation Flaw

A vulnerability in Ledger Bitcoin app versions 2.1.0 and 2.1.1 allows attackers to display incorrect Bitcoin addresses, potentially leading to funds being sent to unintended addresses. Users of these app versions are affected, and it is recommended to update to a patched version. The vulnerability can be exploited by crafting malicious miniscript policies.

AI-Powered App Attacks Rise

A recent report by Digital.ai warns that AI-powered attacks on mobile apps are becoming faster, more frequent, and harder to stop, affecting all industries. These attacks can occur within hours of an app's release, erasing the distinction between emerging and primary targets. Users and developers should be vigilant and take proactive measures to secure their apps.

Vulnerability Exploitation Tops DBIR

According to the 2026 Verizon Data Breach Investigations Report, vulnerability exploitation has become the most common initial access vector, surpassing stolen credentials. This shift affects organizations of all sizes and industries, emphasizing the need for robust vulnerability management. To mitigate this risk, prioritize vulnerability patching and implement a comprehensive security strategy.

Ledger Hardware Wallet Vulnerability

A vulnerability was discovered in Ledger's hardware wallet, affecting the Data Message Handler component. This issue may lead to incorrect type conversion, and it is recommended to upgrade the affected component to mitigate the risk. Users of Ledger hardware wallets up to version 6.34.6 are advised to take action.

Ledger Nano X

A vulnerability has been discovered in Ledger Nano X, Flex, and Stax devices with MCU Firmware Update Handler versions up to 2.4.1, affecting the reset_handler function. Users of these devices are advised to upgrade their firmware to prevent potential exploitation. The vulnerability allows for improper validation of input quantities.

Ledger Nano X Vulnerability

A denial of service vulnerability has been

Untitled Security Alert

The 2026 Data Breach Investigations Report reveals that exploits are increasingly used in initial access for breaches, with patching efforts lagging behind. This trend affects enterprises, highlighting the need for timely vulnerability management. To mitigate risks, organizations should prioritize patching and vulnerability remediation.

Crypto Scams Cost $388M

The FBI reports that Americans lost over $388 million to scams involving cryptocurrency kiosks in 2025. Individuals using crypto ATMs are at risk of financial loss due to these scams. Users should exercise caution when using these services and be aware of potential phishing attempts.

Credit Card Leak on Dark Web

A dark web marketplace has leaked 4.6 million stolen credit cards, potentially affecting individuals

FacturaScripts Image Metadata Leak

A vulnerability in the FacturaScripts accounting software allows authenticated users to access sensitive metadata from uploaded images, potentially exposing personally identifiable information. Users of versions prior to 2026 are affected. To mitigate