Welcome to Hacked dAily by Cytadel Cyber, the first AI-driven cybersecurity podcast delivering key insights and analysis for cybersecurity leaders.

**TrapDoor Supply Chain Attack**: Threat actors spread credential-stealing malware via npm, PyPI, and CratesIO, exploiting open-source vulnerabilities and compromising developer environments. This highlights the urgent need for enhanced supply chain security protocols.

**Verizon 2026 Data Breach Report**: The report shows a rise in cyberattacks, especially phishing and ransomware, stressing the need for stronger cybersecurity frameworks and employee training to protect sensitive data and maintain business continuity.

**Victorian Newspaper Ransomware Attack**: A regional newspaper has been hit by a ransomware attack, disrupting operations and exposing vulnerabilities in smaller media outlets' cybersecurity, calling for improved protective measures.

**Chinese PhaaS Evolution**: New research reveals advanced Chinese-language Phishing-as-a-Service platforms, simplifying phishing attacks and highlighting the necessity for robust defenses and executive awareness to prevent data breaches.

**Lenovo Driver Exploit**: A legitimate Lenovo driver has been reverse-engineered to bypass security defenses, terminating EDR processes. This underscores the risk of trusted drivers being used maliciously, emphasizing the need for vigilant monitoring of vendor-supplied drivers.

Stay informed with Hacked dAily for essential cybersecurity insights tailored for today's security leaders.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber, bringing you the latest in digital defense every day.

Dutch authorities have confiscated 800 servers from a Netherlands-based hosting provider known for facilitating cyberattacks. This marks a pivotal effort to dismantle the infrastructure supporting global cybercrime networks, highlighting the need for international collaboration in cybersecurity.

The cybercrime group Void Dokkaebi has developed a stealthy new malware called InvisibleFerret using Cython, boosting its evasion capabilities. This evolution in cyber tactics calls for more sophisticated security strategies to protect against elusive threats.

Grafana Labs will cease support for its open-source platform, Ghost, effective October 31, 2023, channeling focus toward primary products. This move could impact users relying on Ghost for monitoring solutions, emphasizing a shift in resource allocation within the enterprise landscape.

AI is revolutionizing the cyber threat environment, pressing Managed Service Providers (MSPs) to adapt. With attackers using AI for advanced threats like deepfakes, MSPs must integrate AI-based solutions to enhance threat detection while maintaining their advisory roles.

Finally, a new GPU-accelerated open-source secret scanner offers faster detection of sensitive data in codebases. Leveraging GPU capabilities, this tool speeds up threat identification, crucial amid rising data breach concerns, underscoring the need for rapid security response in software development.

Stay informed with Hacked dAily, where every insight counts.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven podcast by Cytadel Cyber. Today, we cover critical cybersecurity events impacting global networks.

Chinese hacker group Webworm exploits Discord and Microsoft Graph to breach European government networks, reflecting the increasing sophistication of attacks using legitimate platforms and urging stronger protective measures.

Canadian Jacob Butler, leader of the Kimwolf botnet compromising over 2 million Android devices, was arrested in Ottawa. Despite the seizure, Kimwolf's continued operation highlights persisting IoT vulnerabilities, threatening security across sectors.

Authorities dismantled "First VPN," a service aiding ransomware attacks by facilitating anonymity for criminals. This significant enforcement step stresses the value of global cooperation to combat cybercrime infrastructure.

Cyber fraud's decreasing cost and growing sophistication raise alarms for businesses and individuals. Enhanced security and vigilance are critical as cybercriminals rapidly deploy convincing fraud schemes impacting financial stability and trust.

Lastly, the Kali365 Phishing-as-a-Service kit targets Microsoft 365, compromising access tokens to infiltrate data and emails without direct password theft. Its emergence underscores the crucial need for proactive security strategies against evolving phishing threats.

Join us tomorrow for more essential insights from the cybersecurity frontlines. Stay informed, stay prepared.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the leading AI-driven cybersecurity podcast from Cytadel Cyber, delivering essential insights for senior cybersecurity professionals.

Today's top stories:

1. Grafana Labs' recent targeted cyberattack has exposed major vulnerabilities in supply chain dependencies, emphasizing the urgent need for stronger cybersecurity to safeguard proprietary data and open-source components.

2. In a landmark legal development, federal authorities have made the first arrests under a law against 'deepfakes' misuse in Brooklyn, underscoring the necessity of legal structures to protect against AI-driven digital misinformation.

3. The newly discovered ransomware strain, WantToCry, is exploiting SMB vulnerabilities to encrypt remote files, highlighting the critical importance of patches and cybersecurity protocols in safeguarding business data.

4. The Federal Trade Commission is rigorously enforcing the TAKE IT DOWN Act against "nudify" platforms, requiring swift removal of nonconsensual AI-manipulated images under threat of substantial fines, showcasing a firm stance on protecting digital privacy.

5. Operation Dragon Whistle, a cyber espionage campaign, is targeting Chinese academia via phishing tactics, revealing the heightened threat to educational institutions and the need for enhanced cyber defenses in geopolitical contexts.

Hacked dAily ensures you stay informed and prepared with authoritative and concise cybersecurity updates.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Join us for today’s essential cybersecurity updates:

GitHub finds itself under scrutiny after TeamPCP claims to have hacked its internal repositories, allegedly extracting sensitive data and demanding ransom. This breach underscores the vulnerabilities lurking in tech infrastructure, highlighting the urgent need for enhanced security measures to protect digital assets.

The Cybersecurity and Infrastructure Security Agency (CISA) faces backlash following the accidental exposure of sensitive credential data on GitHub. This significant leak has prompted demands for a thorough investigation into CISA’s internal security practices, especially as the U.S. grapples with heightened cybersecurity threats.

Stay tuned to Hacked dAily for insightful analysis and the latest developments in cybersecurity tailored for leaders who need to stay one step ahead.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber, delivering essential insights for CISOs and security leaders.

Today's top story highlights INTERPOL's Operation Ramz, which arrested 201 individuals in a massive MENA region crackdown on cybercrime, demonstrating the critical importance and success of international cooperation in disrupting phishing scams and malware networks.

Next, security researchers unveil GhostTree, a path manipulation technique that bypasses Windows defenses, emphasizing an urgent need for updating enterprise security measures to counteract potential unauthorized access exploits.

Verizon's Data Breach Investigations Report shows exploited vulnerabilities now account for 31% of breaches, up from 20%, with a concerning gap in handling critical vulnerabilities, while ransomware tactics evolve with fewer victims choosing to pay attackers.

AdvancedHEALTH faces a ransomware incident affecting 2.3 million patient records, spotlighting cybersecurity challenges in healthcare and the imperative for robust data protection strategies to safeguard sensitive information.

Lastly, AI-empowered voice deepfakes present new hurdles, urging a reevaluation of verification protocols to thwart potential fraud in sectors reliant on voice recognition, as identifying these imitations becomes essential for maintaining digital communication integrity.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Stay informed with these concise highlights:

1. A security flaw in the Funnel Builder WooCommerce plugin is actively exploited for checkout skimming, compromising customer payment data and underscoring the urgency of regular updates to e-commerce platforms.

2. Grafana Labs reported a breach involving the theft of source code but refused to pay ransom, highlighting the critical need to strengthen intellectual property protection and cybersecurity strategies.

3. OtterCookie, a new JavaScript and Node.js tool, has evolved from credential theft to active surveillance, delivered via npm and Vercel, posing significant data privacy risks.

4. DragonForce launched a ransomware attack on AdvancedHEALTH, compromising patient data and disrupting services, illustrating the necessity for robust cybersecurity in healthcare.

5. Increasingly sophisticated social engineering tactics now focus on exploiting human trust rather than technology, mandating enhanced security awareness and training to counteract these evolving cyber threats.

Each story emphasizes the pressing need for advancements in cybersecurity practices to protect critical infrastructures and sensitive data.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Designed for senior security leaders and executives, today’s episode covers critical and evolving threats, emphasizing actionable intelligence.

A deep dive into a vishing extortion operation uncovers cybercriminals adeptly exploiting phone-based fraud to trick victims and steal sensitive information. This emphasizes the need for upgraded vigilance and effective employee training against sophisticated voice-based threats.

The Fragnesia vulnerability (CVE-2026-46300) in Linux systems is a severe security risk, enabling unauthorized root access across multiple distributions. Organizations must urgently reassess protocols and deploy patches to protect critical systems and data.

PoC code for a critical NGINX vulnerability has been released, risking widespread code execution exploits. With NGINX's vast usage, swift system updates are crucial to maintaining security and operational integrity globally.

Nephrology Associates, PA, suffered a significant data breach from an Insomnia ransomware attack, affecting over 30,000 patients. This incident highlights the pressing need for stringent cybersecurity in healthcare to protect sensitive patient data.

AI-native intrusion detection systems (IDS) are emerging as vital defenses for SMBs against edge-based ransomware. By leveraging machine learning, these systems offer effective risk mitigation, enhancing the cybersecurity posture of resource-constrained businesses.

Stay informed and ahead in the cybersecurity game with Hacked dAily, ensuring your organization’s security strategies are proactive and resilient.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the premier AI-driven cybersecurity podcast by Cytadel Cyber. Stay informed with concise updates on the latest security developments shaping the global digital landscape.

Microsoft is boosting system security by automatically rolling back faulty Windows drivers, minimizing vulnerabilities and ensuring operational stability for users and enterprises.

VELVET CHOLLIMA, a new malware threat employing a fake trading app, emphasizes the rising complexity of cyberattacks, urging increased cybersecurity vigilance in the trading sector.

On Pwn2Own Berlin 2026's first day, experts unveiled 24 zero-day vulnerabilities, focusing on AI products and awarding $523,000 in bounties, showcasing the critical role of such events in preemptive cyber defense.

Tasmania's hospitality sector faces disruption from a CMD Organization ransomware attack, spotlighting the persistent danger cybercrime poses to critical infrastructure and the need for robust defense strategies.

Researchers have uncovered four critical vulnerabilities in OpenClaw, necessitating immediate action to prevent exploitation that could compromise data integrity and continuity of operational security.

Join us daily for essential insights tailored for cybersecurity leaders and decision-makers.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the leading AI-driven cybersecurity podcast by Cytadel Cyber, crafted for senior leaders in cybersecurity. Each day, we deliver essential insights into today's most pressing cyber threats.

Our top story reveals new zero-day vulnerabilities, YellowKey and GreenPlasma, in Windows OS, enabling potential code execution and privilege escalation. This discovery emphasizes the urgent need for rapid patches and vigilant system defenses.

In financial tech news, Abrigo suffered a breach affecting over 711,000 accounts, highlighting the increasing threats in fintech. Financial institutions must take proactive steps to fortify their cybersecurity frameworks to protect sensitive client data.

A cyber campaign, VELVET CHOLLIMA, uses a trading app as bait to deploy infostealer malware, showcasing sophisticated tactics by cybercriminals. Organizations are urged to rigorously vet apps and enhance security postures against such ploys.

Genesis ransomware claims to have stolen 70GB from CarePoint Clinic, potentially compromising patient records. This breach marks a critical wake-up call for healthcare providers to tighten data protection measures and secure operational frameworks.

Lastly, Microsoft Defender for Cloud reports misconfigurations in AI deployments on cloud-native platforms, exposing systems to threats like remote code execution. Organizations must prioritize uncovering and resolving these misconfigurations to secure AI workloads.

Join us on Hacked dAily for more critical cyber updates, offering clarity and actionable intelligence to keep your organization secure. Stay informed, stay ahead.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.