Skip to main content

Posts

The FBI seized the website of the Iran-linked hacker group Handala

Who Is Handala? Handala (also stylized as Handala_hack) first appeared on December 18, 2023, launching both its Telegram channel and X/Twitter account simultaneously. The most recent major attack linked to Handala happened on March 11, 2026, targeting the U.S. medical technology company Stryker. What happened? Handala claimed responsibility for a destructive cyberattack on Stryker’s global systems. The attack disrupted internal networks and Microsoft systems, leaving many employees unable to access devices. The group said the attack was retaliation tied to the ongoing Iran U.S. Israel conflict. Impact Handala claimed it: Wiped over 200,000 devices Stole up to 50 TB of data The company experienced global operational disruption, affecting multiple countries. The FBI this week seized two domains operated by Handala one used as a data leak site and another allegedly used to target individuals with possible links to Israeli defense contractors. Both domai...
Read more
Recent posts

Iran-Linked Hackers Claim Responsibility for Cyberattack on U.S. Medical Device Giant Stryker

A major cyber incident has struck Stryker Corporation, one of the world’s largest manufacturers of medical devices and hospital technology, triggering widespread disruption across the company’s global IT systems. According to early reports, the attack forced the company to shut down portions of its internal network as a precaution while cybersecurity teams began investigating the breach. Employees in several regions reportedly lost access to corporate systems, including laptops, internal communication tools, and network services. Global systems affected The disruption appears to have affected a large portion of the company’s digital infrastructure. Internal systems used for communication and operations were temporarily taken offline, and some office locations experienced interruptions in normal workflows. While the company has not confirmed the full scope of the incident, cybersecurity analysts believe thousands of devices connected to the company’s network may have been im...
Read more

Adidas Data Breach Claims 815,000 Records Stolen

Adidas is investigating allegations of a significant data breach involving one of its external partners. The German sportswear giant confirmed that it was made aware of a "potential data protection incident" at an independent licensing partner responsible for martial arts products.  The investigation was triggered after a user claiming affiliation with the notorious Lapsus$ group reported compromising the company's extranet. The company emphasized that its own IT infrastructure and consumer e-commerce platforms were not affected. On February 16, the threat actor known as Lapsus$ Group posted a message on a dark web forum claiming responsibility for the incident. According to the statement, the group exfiltrated approximately 815,000 records. The allegedly stolen data includes sensitive personally identifiable information (PII), such as:  • First and last names • Email addresses • Passwords • Company names • Dates of birth • Additional unspecified technical dat...
Read more

Do Not Download “Epstein Files” Videos from Random Sources

In recent weeks, a massive release of documents, photos, and videos related to the Jeffrey Epstein investigation has flooded the internet, sparking intense public interest. The files in question come from the U.S. Department of Justice (DOJ) and are part of what is being referred to as the “Epstein files” an enormous collection of evidence tied to the late financier and convicted sex offender.  Unfortunately, this flood of material has also led to many unofficial and potentially unsafe versions of the “videos” circulating online, some shared-on file-sharing sites, social media platforms, forums, and private groups. Downloading or watching these unofficial copies can expose you to graphic, explicit, and highly disturbing content, including material involving sexual exploitation and minors that is extremely harmful to view. Mental health professionals caution that exposure to graphic sexual violence, especially involving minors, can cause trauma, distress, and long-term p...
Read more

IT stocks lose ₹2 lakh crore in market value after the launch of Claude Cowork plugins raises concerns.

                       Indian IT stocks were bleeding on Wednesday, February 4. The trigger was news that Anthropic had launched new AI tools capable of automating tasks in legal, compliance, marketing, and data analysis areas traditionally serviced by software firms and IT service providers. Adding to the pressure was the strength in the Indian Rupee, which typically weighs on export-heavy IT companies by hurting margin expectations. Indian IT stocks (Infosys, TCS, Wipro) are down 6% today following the global SaaSpocalypse. On February 3 and 4, 2026, global markets saw a $285B software sell-off. Traders called this the SaaSpocalypse. On February 2, 2026, Anthropic AI (a rival to OpenAI) launched Claude Cowork, a tool causing the IT sector crash today. Anthropic built Cowork using its own AI, Claude Code, in only 1.5 weeks. This is an Agentic AI tool for businesses, which is a new category of AI that acts without human ...
Read more

A massive phone farm manipulates online metrics

‘’A phone farm is a collection of multiple smartphones used simultaneously to generate income through various apps and services, such as watching ads, completing surveys, or mining cryptocurrency.’’ Back in October, word started making the rounds of an AI startup called Doublespeed. Backed by venture capital firm Andreessen Horowitz, Doublespeed offers customers a unique service: access to a massive phone farm that could be used to operate hundreds of AI-generated social media accounts. Now, 404 Media reports in an explosive scoop that Doublespeed has been hacked. This wasn’t just one account associated with the startup, but the entire backend used to manage its phone farm — so it provides an extraordinary glimpse at how the service is actually being used to manipulate social media at scale. Speaking to 404 on condition of anonymity, the hacker said they can “see the phones in use, which manager [computers controlling the phones] they had, which TikTok accounts ...
Read more

The Silent Hijack: New USSD Scam That Bypasses All Digital Defences

  India's cybersecurity landscape faces a critical new threat a shockingly simple phone scam that requires no technical sophistication from fraudsters yet bypasses nearly all modern digital security measures. The Indian Cyber Crime Coordination Centre (I4C) has issued an urgent nationwide alert about a social engineering attack that uses fundamental telecom features to hijack victims' financial lives. Unlike phishing or malware, this scam exploits the trusted USSD protocol, making every mobile user from smartphone owners to basic feature phone users equally vulnerable. This is where the technical deception occurs. The provided code isn't a verification string but a  USSD command activating unconditional call forwarding.   Typically formatted as *21*[Scammer's Phone Number] #, this sequence when dialled and pressed call silently reroutes all incoming calls to the fraudster's device. The victim might hear a standard confirmation tone or see a "service activated...
Read more