MUDDYWATER HACKERS USE CHAOS RANSOMWARE AS COVER
■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE
Iranian threat group MuddyWater is masking its operations behind Chaos ransomware attacks while exploiting Microsoft Teams for social engineering. The deception allows attackers to establish persistent access to compromised systems.
■ MORE FROM THE SECURITY DESK
U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.
Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.
A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.