Welcome to Hacked dAily, the AI-driven cybersecurity podcast by Cytadel Cyber. Here's your quick round-up of today's top stories:

Microsoft warns of a sophisticated phishing campaign exploiting Remote Monitoring and Management software, targeting 29,000 users by posing as the IRS. This emphasizes the urgent need for robust cybersecurity defenses against deceptive tactics.

Authorities dismantled 373,000 dark web sites engaged in hosting child sexual abuse material. This highlights the need for international collaboration and advanced enforcement to combat cybercrime effectively.

Mazda disclosed a data breach from unauthorized access to its warehouse management system, impacting 692 employee and partner records. The incident underscores the importance of addressing security vulnerabilities and the repercussions of data exposure.

Trio-Tech's Singapore arm suffered a ransomware attack, with stolen data published online. This incident illustrates the persistent threat of ransomware and the importance of safeguarding sensitive information against such cyber threats.

The Tycoon2FA phishing platform resumes operations following a police disruption. This development stresses the challenge for law enforcement and the necessity for businesses to bolster their defenses against phishing attacks and other sophisticated threats.

Tune in daily for the latest in cybersecurity news on Hacked dAily, essential listening for CISOs and decision-makers aiming to stay ahead of evolving cyber threats.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Stay ahead of cyber threats with today's top stories designed for CISOs and security leaders.

Foster City, California, reels from a ransomware attack disrupting municipal services, highlighting the vulnerability of smaller municipalities to cyber threats. A state of emergency has been declared, emphasizing the importance of robust defenses for public entities against data breaches.

A new malware strain targets Cobra DocGuard users by disguising as legitimate documents, compromising sensitive data. Organizations must enhance security measures to protect critical data environments from these deceptive threats.

The GlassWorm cyber campaign exploits the Open VSX registry with sleeper extensions resembling Visual Studio Code enhancements, raising alarms over open-source security. This case underscores the need for vigilant monitoring of software repositories globally.

The Beast ransomware gang's operational security failure exposes their attack toolkit, providing cybersecurity experts valuable insights. This incident presents a crucial chance to strengthen defenses against ransomware and reveals gaps in cybercriminal operations.

Russia-linked operatives target high-profile WhatsApp and Signal users, including government officials, through phishing tactics. By bypassing app encryption, they risk exposing sensitive information, prompting FBI and Dutch warnings stressing vigilance and enhanced security protocols.

Stay informed with Hacked dAily for critical cybersecurity updates.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast from Cytadel Cyber, delivering essential insights for leaders in cybersecurity.

Our top story covers a global hacking campaign that defaced over 7,500 Magento sites, affecting high-profile entities like Toyota and FedEx, highlighting risks in using prevalent web platforms.

We also discuss CVE-2026-33017, a critical Langflow vulnerability exploited within 20 hours of disclosure, underscoring the critical need for urgent patch management to protect infrastructures.

Another development involves attackers leveraging GitHub Actions to spread infostealer malware via the Trivy vulnerability scanner, stressing importance in securing CI/CD pipelines from supply chain attacks.

In other news, the WorldLeaks ransomware group hit Los Angeles and its Metro system, highlighting vulnerabilities in municipal IT infrastructures and changing threat tactics from encryption to extortion.

Finally, researchers reveal threat actors using Azure Monitor alerts in callback phishing attacks, emphasizing the importance of vigilance and robust security measures against sophisticated phishing schemes.

Stay informed with Hacked dAily for dynamic, insightful updates on the evolving cybersecurity landscape.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber, delivering key insights for safeguarding digital assets.

Google has set a 24-hour delay on sideloading unverified apps on Android, aimed at reducing malware risks and protecting users from scams. This proactive measure reinforces Google's dedication to enhancing user security.

Three individuals face charges for attempting to export AI tech to China, spotlighting national security concerns over tech proliferation. This case emphasizes the necessity of stringent export controls in safeguarding U.S. innovations in AI.

A UK police force suspends live facial recognition technology amidst findings of racial bias, igniting debates on its ethical and fair use. This underscores the critical need for oversight in deploying surveillance technologies equitably.

The hacker group LAPSUS$ claims to have breached AstraZeneca's data, highlighting persistent cybersecurity threats in the pharmaceutical sector. This breach raises industry-wide alarms over the security of intellectual property vital to public health.

Qihoo 360’s Security Claw AI platform suffered a breach with the exposure of a TLS private key, risking interception of secure communications. This incident underscores the importance of robust key management and security protocols in AI cybersecurity solutions.

Each story reveals strategic insights for today's cybersecurity leaders, emphasizing the evolving challenges and imperatives in protecting technology and data assets. Stay informed with Hacked dAily, cutting through the noise to bring you what matters most.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the pioneering AI-driven cybersecurity podcast by Cytadel Cyber. Stay informed with our concise daily updates tailored for senior cybersecurity professionals.

Google introduces "Install Unknown Apps" for Android, offering flexibility for advanced users while managing security risks through layered permissions and warnings. This approach seeks to empower users responsibly without compromising device security.

Hackers are exploiting browser prompts to phish for biometric data, creating a new avenue for digital theft. This tactic urges organizations to bolster security protocols and educate users to counteract deceptive threats effectively.

Security experts identify 54 EDR killers using BYOVD tactics to exploit driver vulnerabilities for privilege escalation. Enterprises must rigorously vet driver updates to protect against these sophisticated security breaches.

Marquis reveals a ransomware attack impacting 672,000 individuals, highlighting critical privacy concerns and potential identity theft. This breach underscores the need for robust cybersecurity measures in an evolving threat landscape.

The "Vibe-Coded" malware campaign, powered by AI, demonstrates the expanding capabilities of cyber threats. Organizations must develop AI-driven defenses to stay ahead of increasingly precise and adaptive attacks.

Stay ahead of cyber threats with Hacked dAily—your essential source for actionable insights, highlighting the latest cybersecurity challenges and strategies.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the premier AI-driven cybersecurity podcast from Cytadel Cyber. Stay informed with the latest insights tailored for cybersecurity leaders and decision-makers.

Nordstrom's recent breach involved unauthorized use of their email system to distribute cryptocurrency scams, risking customer trust. This highlights the need for stringent email security measures to protect corporate reputation.

Cisco's firewall zero-day vulnerability has been exploited to deploy Interlock ransomware, underscoring the urgency for immediate patching and robust defenses. Businesses must stay vigilant against evolving threats to maintain security.

A potent .NET AOT malware variant uses black box techniques, complicating detection and analysis. This advancement in malware evasion calls for enhanced cybersecurity detection capabilities.

AkzoNobel faced a ransomware attack at a U.S. site by the Anubis group, which pilfered 170GB of data. The incident stresses the growing danger of ransomware-as-a-service, urging global enterprises to bolster defenses.

AI-enabled adversaries are closing the gap between vulnerability disclosure and exploitation, pressuring organizations to accelerate patching and response. This shift demands proactive defense strategies against advanced threats.

Each story reinforces the critical importance of staying ahead in cybersecurity, offering valuable insights for strategic decision-making. Tune in daily to stay equipped with the knowledge you need to protect your organization in today's dynamic cyber landscape.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber, offering crucial insights for CISOs, security leaders, and decision-makers.

Today's top story reveals a significant misstep by Fancy Bear (APT28), a Russian cyber-espionage group, which inadvertently exposed their hacking techniques and infrastructure. This operational security failure allows cybersecurity defenders to enhance defenses against sophisticated cyber threats.

The UK Companies House incident exposed sensitive data of millions of firms, highlighting severe data privacy concerns and the potential for identity theft and financial loss, stressing the importance of robust corporate data protection measures.

INTERPOL warns of cybercriminals increasingly using artificial intelligence to improve the effectiveness of scams, including phishing, deepfake videos, and voice cloning, posing a severe threat and necessitating advanced defense mechanisms.

Google reports a shift in ransomware tactics, with a 77% increase in data exfiltration attacks as threat actors adapt to declining ransom payments. Smaller businesses are increasingly targeted, emphasizing the need for enhanced security measures to counter data monetization and phishing campaigns.

Finally, Microsoft's Detection and Response Team uncovered a sophisticated vishing attack using Microsoft Teams to impersonate IT support. This highlights threat actors exploiting trust, reinforcing the need for organizations to safeguard against identity-focused attacks and strengthen detection capabilities in collaboration tools.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber, delivering vital insights for CISOs and security leaders.

Today's top stories:

A security flaw in AWS Bedrock's code interpreter could let attackers execute unauthorized code. This highlights the urgent need for robust cloud security measures to protect data integrity and maintain user trust.

The "Zombie ZIP" tactic manipulates ZIP file headers to evade antivirus software. Despite being dubbed CVE-2026-0866, it poses a minimal risk to isolated systems, as detection remains possible post-decompression.

North Korea's Konni Group has launched spear-phishing attacks via KakaoTalk, targeting South Korean users. This campaign underscores ongoing cyber threats, demanding heightened vigilance and improved security protocols.

The Gentlemen ransomware group has breached seven organizations globally, including healthcare and education sectors. Threats of releasing sensitive data highlight the urgent need for protective measures against ransomware attacks.

The EU is revising the AI Act to address AI tools generating non-consensual content. Proposed bans and refined regulations aim to safeguard privacy, ensuring Europe remains at the forefront of global AI governance.

Stay ahead with Hacked dAily for strategic business and security insights.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Here are today’s top stories:

A major flaw in Bluetooth mesh networking via BitChat reveals potential cache poisoning and replay attacks. These vulnerabilities threaten secure IoT communications, emphasizing the necessity for immediate patches to protect private data integrity.

"CrackArmor" has been unveiled as a threat to systems using AppArmor, risking local privilege escalation to root. Local attacks jeopardize the security of Linux-based systems, pressing the need for urgent updates to preserve system integrity.

Operation CamelClone, a cyber espionage effort, targets global government and defense sectors. State-sponsored actors aim to access classified data, highlighting the urgent requirement for international cybersecurity cooperation.

DeKalb County's Sheriff's Department faced a ransomware strike, disrupting key services like email and inmate bookings, revealing the fragility of public safety networks to cyber incursions and the imperative of robust defenses.

AI-driven phishing attacks are tricking users into giving browser permissions, capturing sensitive data like passwords. This escalation in phishing tactics signals an urgent call for enhanced cybersecurity protocols and staff awareness training.

Stay informed and ahead with Hacked dAily.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber, delivering crucial daily insights for CISOs and security leaders.

The FBI is facing scrutiny after a breach involving files linked to Jeffrey Epstein, reportedly caused by human error, raising fresh concerns about the protection of highly sensitive federal data.

Storm-2561 is targeting corporate users through fake VPN websites and trojanized installers, showing how search manipulation and trusted software impersonation remain effective tools for credential theft.

Researchers have identified new PhantomRaven attack waves targeting the npm ecosystem, underscoring the continued risk of software supply chain compromise for developers and organizations relying on open-source packages.

England Hockey is investigating an alleged breach claimed by the AiLock ransomware group, highlighting the growing exposure of sports organizations and nonprofits to cyber extortion and data theft.

And finally, a major INTERPOL-led operation has disrupted more than 45,000 malicious IPs and servers tied to ransomware, phishing, and malware, reinforcing the importance of global coordination in fighting cybercrime.

Stay informed with Hacked dAily for vital insights into the ever-changing threats impacting business security.

This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations.

Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure.

Checkout cytadel.co.uk for more information.