<?xml version="1.0" encoding="UTF-8"?>
<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9"
        xmlns:news="http://www.google.com/schemas/sitemap-news/0.9">
  <url>
    <loc>https://www.intelfusions.com/news/nadmesh-botnet-ai-servers-cloud-credential-harvesting</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T11:14:41.493Z</news:publication_date>
      <news:title>New botnet hunts exposed AI servers to steal cloud keys</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.intelfusions.com/news/the-gentlemen-ransomware-mass-leak-july-16-2026</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T10:54:41.493Z</news:publication_date>
      <news:title>The Gentlemen ransomware dumps nearly 20 victims in a single day</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.intelfusions.com/news/acr-stealer-clickfix-browser-credential-theft-campaigns</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T06:41:56.887Z</news:publication_date>
      <news:title>Fake fix prompts spread ACR Stealer to raid corporate browser logins</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.intelfusions.com/news/cisa-kev-sharepoint-cve-2026-58644-active-exploitation</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T06:21:56.887Z</news:publication_date>
      <news:title>CISA flags a new SharePoint flaw as actively exploited</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.intelfusions.com/news/goserpent-backdoor-southeast-asia-government-espionage</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T05:59:33.170Z</news:publication_date>
      <news:title>New Go backdoor quietly steals government secrets across Southeast Asia</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.intelfusions.com/news/tuxbot-v3-llm-assisted-iot-botnet-akiru</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T05:39:33.170Z</news:publication_date>
      <news:title>AI-assisted botnet shipped with the chatbot&apos;s safety warning still inside</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.intelfusions.com/news/uefi-shim-bootloaders-secure-boot-bypass-2026</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T03:12:23.693Z</news:publication_date>
      <news:title>Old signed bootloaders let attackers bypass Secure Boot on most PCs</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.intelfusions.com/news/clicklock-stealer-macos-clickfix-password-crypto-theft</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-16T23:32:35.839Z</news:publication_date>
      <news:title>New macOS stealer locks your Mac until you type your password</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.intelfusions.com/news/uat-11795-starland-rat-wldr-trojanized-installers</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-16T21:05:37.461Z</news:publication_date>
      <news:title>Russian-speaking hackers push crypto stealers through fake app installers</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.intelfusions.com/news/hellonet-vipnet-update-system-backdoor-russian-networks</loc>
    <news:news>
      <news:publication>
        <news:name>IntelFusions</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-16T18:30:00.231Z</news:publication_date>
      <news:title>Hackers hijack ViPNet updates to backdoor Russian government networks</news:title>
    </news:news>
  </url>
</urlset>