Global law enforcement agencies, including the FBI and Indonesian authorities, have successfully dismantled the "W3LL" phishing ecosystem, a sophisticated marketplace that facilitated over $20 million in fraud. The platform provided cybercriminals with end-to-end phishing services, including MFA bypass and credential theft tools. Additionally, two U.S. nationals were sentenced for aiding North Korean IT workers in infiltrating American corporations through identity theft and fraudulent remote work setups.
Simultaneously, new threats have emerged in the form of the "AgingFly" malware targeting Ukrainian government and healthcare sectors via phishing and malicious shortcut files. In the web infrastructure space, a critical authentication bypass vulnerability (CVE-2026-33032) in Nginx UI is being actively exploited in the wild. This flaw allows unauthenticated remote attackers to gain full administrative control over servers through exposed Model Context Protocol endpoints.
Top comments (0)