May 26, 2026 - Swedish eTrade platform signs an agreement for vulnerability scanning. May 21, 2026 - Swedish software producer signs agreement for continuous pentesting. May 20, 2026 - Swedish CRM producer signs an agreement for continuous penetration testing. May 16, 2026 - eBuilder signs an agreement for SOC/MDR with a TechHub. May 11, 2026 - eBuilder signs an agreement for SOC/MDR and automated pentests with a company in the publishing business. May 8, 2026 - eBuilder signs a pentest agreement with a leading petrochemical producer. April 8, 2026 - eBuilder signs an agreement for MDR/SOC with a hotel business. March 13, 2026 - eBuilder signs an agreement for SOC-operations with a Swedish municipality. May 26, 2026 - Swedish eTrade platform signs an agreement for vulnerability scanning. May 21, 2026 - Swedish software producer signs agreement for continuous pentesting. May 20, 2026 - Swedish CRM producer signs an agreement for continuous penetration testing. May 16, 2026 - eBuilder signs an agreement for SOC/MDR with a TechHub. May 11, 2026 - eBuilder signs an agreement for SOC/MDR and automated pentests with a company in the publishing business. May 8, 2026 - eBuilder signs a pentest agreement with a leading petrochemical producer. April 8, 2026 - eBuilder signs an agreement for MDR/SOC with a hotel business. March 13, 2026 - eBuilder signs an agreement for SOC-operations with a Swedish municipality.

Company News

News & Threat Intelligence

Cybersecurity News Across
Sweden, the Nordics & Europe

The threats, breaches, vulnerabilities and regulatory moves that matter to organisations in scope, tracked and summarised by the analysts who run our SOC.

Updated daily · last update June 23, 2026

Latest Coverage

Recent Cyber Security News

Data Breaches

DigiCert Breach Via Screensaver Enables Malware Signing, Microsoft Defender Chaos

DigiCert confirmed that attackers breached its internal support portal on April 2 using a malicious screensaver file, fraudulently obtaining 27 code signing

May 11, 2026 Read more · 4 min

Critical Infrastructure

Polish Water Systems Hit by 20 Attacks as Russia Escalates Infrastructure War

Poland's domestic intelligence service confirmed that attackers breached water treatment facilities in five towns in 2025, with industrial control systems compromised in

May 8, 2026 Read more · 3 min

Threats & Attacks

Daemon Tools Hackers Used Valid Certificates to Hide Backdoor for Month

Chinese-speaking attackers compromised Daemon Tools software installers and went undetected for nearly a month. The supply chain attack began on April 8, 2026, with trojanized…

May 7, 2026 Read more · 4 min

Data Breaches

ShinyHunters Steals Student Data From 275 Million Canvas Users

Instructure confirmed that cybercriminals have stolen personal data belonging to 275 million users of its Canvas learning platform. The ShinyHunters extortion group

May 6, 2026 Read more · 4 min

Threats & Attacks

Salt Typhoon Hits IBM Italy Subsidiary in Silent Two-Week Espionage Campaign

Sistemi Informativi, an IBM Italy subsidiary managing IT infrastructure for Italian public agencies and major private companies, was breached by the Chinese-linked

May 5, 2026 Read more · 3 min

Vulnerabilities

cPanel Zero-Day Exploited for Months Before Patch 44,000 Servers Hit

A critical authentication bypass vulnerability in cPanel has been under active exploitation since February, two months before the vendor issued a patch. CVE-2026-41940 carries a…

May 5, 2026 Read more · 4 min

Critical Infrastructure

Region Sörmland IT Disruption Grounds Mammography Services for Hours

Region Sörmland experienced widespread IT system failures on Wednesday morning that grounded healthcare services across the county. The disruption affected the Cosmic

May 5, 2026 Read more · 3 min

Data Breaches

CISA Fast-Tracks Nine-Year-Old Linux Root Bug to Known Exploited List

CISA added CVE-2026-31431 to its Known Exploited Vulnerabilities catalogue on Friday, confirming that a nine-year-old Linux kernel flaw is being exploited in live attacks. The…

May 4, 2026 Read more · 4 min

Threats & Attacks

Bluekit Phishing Kit Turns Session Hijacking into a Point-and-Click Operation

A new phishing kit called Bluekit has turned session hijacking into a point-and-click operation. Discovered by Varonis Threat Labs, the platform combines

May 4, 2026 Read more · 4 min

Vulnerabilities

Single Git Push Could Have Compromised Millions of GitHub Repositories

A command injection flaw in GitHub's git push pipeline could have allowed attackers to execute arbitrary code on GitHub servers and access

April 30, 2026 Read more · 4 min

Data Breaches

ShinyHunters Claims Udemy, Zara and 7-Eleven in Latest Extortion Wave

ShinyHunters claimed to have stolen 1.4 million records from online learning platform Udemy and has threatened to release the data alongside stolen information from Zara…

April 28, 2026 Read more · 3 min

Ransomware

Trigona Ransomware Builds Custom Data Theft Tool to Evade Security

Trigona ransomware affiliates have abandoned off-the-shelf data exfiltration tools in favour of custom-built malware that steals files faster and evades security detection. The move marks…

April 27, 2026 Read more · 4 min

Vulnerabilities

Microsoft Defender Targeted by Three Zero-Days, Two Remain Unpatched

Microsoft Defender is under coordinated attack through three zero-day vulnerabilities that turn the security software into an attack vector. Huntress confirmed active

April 24, 2026 Read more · 4 min

Threats & Attacks

NCSC Handles 200 State Cyber Attacks as Britain Faces Four Weekly Incidents

Britain handled 204 nationally significant cyberattacks in 2025, more than double the 89 recorded the previous year, as hostile states replaced criminal

April 23, 2026 Read more · 4 min

Threats & Attacks

North Korean Hackers Hijacked Axios Package for 100 Million Users

North Korean state hackers compromised the Axios npm package on 31 March 2026, inserting a cross-platform remote access trojan into one of JavaScript's most widely…

April 22, 2026 Read more · 4 min

Data Breaches

French Identity Document Agency Hit by Cyberattack, 19 Million Records at Risk

France's National Agency for Secure Documents was breached on April 15, potentially exposing personal data belonging to millions of citizens who applied

April 21, 2026 Read more · 3 min

Regulations & Compliance

Italian Regulator Fines Poste Italiane €12.5 Million for Mobile App Data Overreach

Italy's data protection authority has hit Poste Italiane and its payments subsidiary Postepay with a combined €12.5 million fine for forcing millions of users to…

April 21, 2026 Read more · 4 min

Threats & Attacks

Cargo Thieves Exploit RMM Tools to Steal Freight Worth £5 Billion

Cybercriminals are compromising trucking and logistics companies to steal physical cargo shipments worth billions. A threat cluster identified by Proofpoint has been

April 20, 2026 Read more · 4 min

Ransomware

Automotive Data Giant Autovista Confirms Ransomware Attack Disrupts European Operations

Autovista, a London-based automotive data and analytics firm, confirmed this week that a ransomware attack has disrupted its systems across Europe and Australia. The company,…

April 17, 2026 Read more · 3 min

UK Government Warns Businesses After Anthropic AI Finds Thousands of Unpatched Vulnerabilities

The UK government has issued urgent warnings to businesses after Anthropic's new AI model discovered thousands of previously unknown high-severity vulnerabilities across

April 16, 2026 Read more · 4 min

Critical Infrastructure

Swedish Security Police Identify Pro-Russian Group Behind Failed Power Plant Attack

Sweden's Security Police have identified the pro-Russian group behind a failed cyberattack on a heating plant in western Sweden last spring. The

April 16, 2026 Read more · 4 min

Data Breaches

Booking.com Data Breach Exposes Millions as WhatsApp Scammers Strike

Booking.com confirmed Monday that hackers accessed customer reservation data in a breach that appears to have been running undetected since early April. The travel platform…

April 16, 2026 Read more · 4 min

Data Breaches

Vilhelmina and Dorotea Municipalities Hit by Ransomware Attack Amid Regional Wave

Vilhelmina and Dorotea municipalities in Västerbotten were hit by ransomware attacks on April 9, 2026, forcing both councils to activate crisis protocols

April 16, 2026 Read more · 4 min

Data Breaches

Eurail Breach Exposes 308,777 Passport Numbers After Christmas Attack

Eurail B.V. confirmed that attackers breached its network on 26 December 2025 and stole passport numbers and personal data belonging to 308,777 travellers. The Dutch…

April 10, 2026 Read more · 4 min

Vulnerabilities

Adobe Reader Zero-Day Exploited for Weeks Before Patch Existed

Attackers have been inside Adobe Reader systems for four months before anyone caught them. The zero-day vulnerability, discovered by EXPMON researcher Haifei

April 9, 2026 Read more · 3 min

Vulnerabilities

BlueHammer Windows Zero-Day Exploited Six Weeks Before Microsoft Knew

A frustrated security researcher has released working exploit code for an unpatched Windows vulnerability that allows attackers to escalate from ordinary user

April 9, 2026 Read more · 4 min

Vulnerabilities

Ninja Forms File Upload Flaw Lets Attackers Hijack 50,000 WordPress Sites

A critical flaw in the Ninja Forms File Upload plugin allows unauthenticated attackers to upload malicious files and execute arbitrary code on

April 8, 2026 Read more · 3 min

Threats & Attacks

Russian Military Intelligence Hijacks Routers in Massive DNS Poisoning Campaign

Russia's military intelligence service has been inside home and office routers across Europe and beyond for two years, stealing login credentials from

April 8, 2026 Read more · 4 min

AI & Emerging Tech

AI-Driven Supply Chain Attack Compromises 500 GitHub Repositories in Six-Week Campaign

A six-week supply chain attack against GitHub repositories exposed credentials from hundreds of organisations before security researchers detected it in April 2026.

April 7, 2026 Read more · 4 min

CISA Updates Akira Advisory as Ransomware Earns $244 Million

CISA issued an updated joint advisory on Akira ransomware on 13 November, warning that the group has claimed $244 million in ransom payments since March…

April 3, 2026 Read more · 5 min

Behind the Feed

The Same Analysts Who Track These Stories Run Our SOC

This isn't a content mill. The threats we summarise here are the ones our Sweden-based analysts watch for across client environments, around the clock. When something breaks, our customers hear it from us first.

See how MDR works

3 min Average time to contain a confirmed threat

3 days To full 24/7 MDR coverage from contract

40+ Swedish organisations actively protected

24/7 SOC coverage, 365 days a year, in Sweden

Keep Going

Go deeper

Articles

Cyber intelligence from our analysts

Longer-form briefings and explainers, from incident breakdowns to practical NIS2 and Zero-Trust guidance.

All articles

Cyber Security 101

Security fundamentals, explained simply

Plain-language explainers on the core concepts, threats and frameworks behind modern security, for specialists and decision-makers alike.

Start with the basics

Not Sure
Where to Start?

Is Your Domain Already Compromised?

Cybersecurity News Across
Sweden, the Nordics & Europe

Recent Cyber Security News

DigiCert Breach Via Screensaver Enables Malware Signing, Microsoft Defender Chaos

Polish Water Systems Hit by 20 Attacks as Russia Escalates Infrastructure War

Daemon Tools Hackers Used Valid Certificates to Hide Backdoor for Month

ShinyHunters Steals Student Data From 275 Million Canvas Users

Salt Typhoon Hits IBM Italy Subsidiary in Silent Two-Week Espionage Campaign

cPanel Zero-Day Exploited for Months Before Patch 44,000 Servers Hit

Region Sörmland IT Disruption Grounds Mammography Services for Hours

CISA Fast-Tracks Nine-Year-Old Linux Root Bug to Known Exploited List

Bluekit Phishing Kit Turns Session Hijacking into a Point-and-Click Operation

Single Git Push Could Have Compromised Millions of GitHub Repositories

ShinyHunters Claims Udemy, Zara and 7-Eleven in Latest Extortion Wave

Trigona Ransomware Builds Custom Data Theft Tool to Evade Security

Microsoft Defender Targeted by Three Zero-Days, Two Remain Unpatched

NCSC Handles 200 State Cyber Attacks as Britain Faces Four Weekly Incidents

North Korean Hackers Hijacked Axios Package for 100 Million Users

French Identity Document Agency Hit by Cyberattack, 19 Million Records at Risk

Italian Regulator Fines Poste Italiane €12.5 Million for Mobile App Data Overreach

Cargo Thieves Exploit RMM Tools to Steal Freight Worth £5 Billion

Automotive Data Giant Autovista Confirms Ransomware Attack Disrupts European Operations

UK Government Warns Businesses After Anthropic AI Finds Thousands of Unpatched Vulnerabilities

Swedish Security Police Identify Pro-Russian Group Behind Failed Power Plant Attack

Booking.com Data Breach Exposes Millions as WhatsApp Scammers Strike

Vilhelmina and Dorotea Municipalities Hit by Ransomware Attack Amid Regional Wave

Eurail Breach Exposes 308,777 Passport Numbers After Christmas Attack

Adobe Reader Zero-Day Exploited for Weeks Before Patch Existed

BlueHammer Windows Zero-Day Exploited Six Weeks Before Microsoft Knew

Ninja Forms File Upload Flaw Lets Attackers Hijack 50,000 WordPress Sites

Russian Military Intelligence Hijacks Routers in Massive DNS Poisoning Campaign

AI-Driven Supply Chain Attack Compromises 500 GitHub Repositories in Six-Week Campaign

CISA Updates Akira Advisory as Ransomware Earns $244 Million

The Same Analysts Who Track These Stories Run Our SOC

Go deeper

Cyber intelligence from our analysts

Security fundamentals, explained simply

Cybersecurity News Across Sweden, the Nordics & Europe

Recent Cyber Security News

DigiCert Breach Via Screensaver Enables Malware Signing, Microsoft Defender Chaos

Polish Water Systems Hit by 20 Attacks as Russia Escalates Infrastructure War

Daemon Tools Hackers Used Valid Certificates to Hide Backdoor for Month

ShinyHunters Steals Student Data From 275 Million Canvas Users

Salt Typhoon Hits IBM Italy Subsidiary in Silent Two-Week Espionage Campaign

cPanel Zero-Day Exploited for Months Before Patch 44,000 Servers Hit

Region Sörmland IT Disruption Grounds Mammography Services for Hours

CISA Fast-Tracks Nine-Year-Old Linux Root Bug to Known Exploited List

Bluekit Phishing Kit Turns Session Hijacking into a Point-and-Click Operation

Single Git Push Could Have Compromised Millions of GitHub Repositories

ShinyHunters Claims Udemy, Zara and 7-Eleven in Latest Extortion Wave

Trigona Ransomware Builds Custom Data Theft Tool to Evade Security

Microsoft Defender Targeted by Three Zero-Days, Two Remain Unpatched

NCSC Handles 200 State Cyber Attacks as Britain Faces Four Weekly Incidents

North Korean Hackers Hijacked Axios Package for 100 Million Users

French Identity Document Agency Hit by Cyberattack, 19 Million Records at Risk

Italian Regulator Fines Poste Italiane €12.5 Million for Mobile App Data Overreach

Cargo Thieves Exploit RMM Tools to Steal Freight Worth £5 Billion

Automotive Data Giant Autovista Confirms Ransomware Attack Disrupts European Operations

UK Government Warns Businesses After Anthropic AI Finds Thousands of Unpatched Vulnerabilities

Swedish Security Police Identify Pro-Russian Group Behind Failed Power Plant Attack

Booking.com Data Breach Exposes Millions as WhatsApp Scammers Strike

Vilhelmina and Dorotea Municipalities Hit by Ransomware Attack Amid Regional Wave

Eurail Breach Exposes 308,777 Passport Numbers After Christmas Attack

Adobe Reader Zero-Day Exploited for Weeks Before Patch Existed

BlueHammer Windows Zero-Day Exploited Six Weeks Before Microsoft Knew

Ninja Forms File Upload Flaw Lets Attackers Hijack 50,000 WordPress Sites

Russian Military Intelligence Hijacks Routers in Massive DNS Poisoning Campaign

AI-Driven Supply Chain Attack Compromises 500 GitHub Repositories in Six-Week Campaign

CISA Updates Akira Advisory as Ransomware Earns $244 Million

The Same Analysts Who Track These Stories Run Our SOC

Go deeper

Cyber intelligence from our analysts

Security fundamentals, explained simply

Get Cyber News in Your Inbox

Join the List

Cybersecurity News Across
Sweden, the Nordics & Europe