Skip to main content
← All Tags

Cybersecurity

624 articles in this category (Page 22 of 26)

AI NewsCybersecurityIoT Security

Mirai-Based Botnets Resurface: IoT Vulnerabilities and Global Cyber Threats Surge in 2025

Mirai-based ShadowV2 botnet exploits 7 IoT vulnerabilities during AWS outage, signaling a shift in cyber threats (2025).

Read more
AI NewsCybersecurityDevOps

Webinar: Securing Updates with Community-Maintained Tools

Free webinar addresses the risks of using community package managers like Chocolatey and Winget, with a focus on practical security measures.

Read more
Stock Weather AICybersecurityEarnings Analysis

Zscaler – 2025-11-27 - increase Confidence 7/10

Strong revenue beat and raised guidance clash with post-earnings selloff, creating short-term buying opportunity in cloud security leader.

ZS
Read more
AI NewsCybersecurityBlockchain

Chrome Extension Crypto Copilot Steals Solana via Hidden Transfer Fees

Researchers discovered the 'Crypto Copilot' Chrome extension injecting hidden Solana transfer fees into Raydium swaps, siphoning at least 0.0013 SOL per transaction.

Read more
AI NewsCybersecurityAI Ethics

Dark LLMs Aid Petty Criminals, Underwhelm Technically

Dark LLMs like WormGPT 4 and KawaiiGPT assist low-level hackers but lack advanced capabilities, per 2025 analysis.

Read more
AI NewsCybersecurityFraud

FBI Warns of $262M in ATO Fraud Amid AI-Driven Phishing Surge

FBI reports $262 million in account-takeover fraud losses linked to AI-powered phishing and holiday scams.

Read more
AI NewsCybersecurityMilitary Tech

Iran Exploits Cyber Domain to Aid Kinetic Strikes

Iran uses cyberattacks to enable missile strikes, with Amazon linking 2021–2024 incidents to kinetic targeting.

Read more
AI NewsCybersecurityRansomware

Qilin Ransomware 'Korean Leaks' Campaign Compromises 28 South Korean Victims

Bitdefender attributes a large-scale data heist impacting 28 South Korean organizations to the Qilin ransomware group, resulting in 2TB of stolen data.

Read more
AI NewsCybersecurityMalware

RomCom Leverages SocGholish Fake Updates to Deploy Mythic Agent Malware

First observed use of SocGholish by RomCom in a U.S. engineering firm attack, blocked before escalation.

Read more
AI NewsCybersecuritySupply Chain Attacks

Shai-Hulud v2 Spreads From npm to Maven, as Campaign Exposes Thousands of Secrets

Shai-Hulud v2 breached npm and Maven, exposing 11,858 secrets across 28,000+ repositories.

Read more
AI NewsCybersecurityAI Security

Balanced SOC Investment Cuts False Positives by 90% in Phishing Defense

A 2025 case study shows SOCs prevent sophisticated phishing attacks missed by detection tools, reducing false positives by 90%.

Read more
AI NewsCybersecurityThreat Intelligence

CISA Warns of Active Spyware Campaigns Hijacking Signal and WhatsApp Users

CISA alerts users to ongoing spyware campaigns targeting high-value individuals via Signal, WhatsApp, and Android, with identified campaigns impacting fewer than 200 WhatsApp users.

Read more
AI NewsCybersecurityMalware

DPRK's FlexibleFerret Expands macOS Credential Theft Campaign

North Korea-linked malware campaign uses social engineering to steal macOS credentials, leveraging fake job portals and Terminal exploits (2025).

Read more
AI NewsCybersecurityMalware

Hackers Hijack Blender 3D Assets to Deploy StealC V2 Data-Stealing Malware

A new campaign leverages malicious Blender .blend files on CGTrader to install StealC V2, stealing data from browsers, plugins, and crypto wallets.

Read more
AI NewsCybersecurityThreat Intelligence

JackFix Attack Circumvents ClickFix Mitigations

JackFix, a new ClickFix variant, bypasses security mitigations with psychological phishing and runtime obfuscation, causing hundreds of VirusTotal reports.

Read more
AI NewsCybersecurityMalware

JackFix Campaign Leverages Fake Windows Updates to Deploy Multiple Stealers

The JackFix campaign utilizes deceptive fake Windows update pop-ups on adult websites to deliver multi-stage PowerShell malware, resulting in potential data theft and system compromise.

Read more
AI NewsCybersecurityThreat Intelligence

ToddyCat APT Enhances Tools to Steal Outlook Emails & Microsoft 365 Tokens

ToddyCat upgrades hacking tools like TCSectorCopy and TomBerBil to steal corporate email and Microsoft 365 access tokens, impacting data security.

Read more
AI NewsCybersecurityData Breach

Years of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API Keys

Researchers uncovered 5GB of leaked credentials from JSONFormatter and CodeBeautify, impacting organizations across critical sectors.

Read more
AI NewsCybersecurityAI Ethics

Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or Uyghurs

CrowdStrike found DeepSeek-R1 produces 50% more security vulnerabilities when prompted with politically sensitive topics like Tibet or Uyghurs.

Read more
AI NewsCybersecurityOpen Source Security

Infamous Shai-hulud Worm Resurfaces From the Depths

New Shai-hulud worm variant infects 25,000+ repositories by executing malicious code during preinstall.

Read more
AI NewsCybersecurityCloud Security

New Fluent Bit Flaws Expose Cloud to RCE and Stealthy Infrastructure Intrusions

Five critical vulnerabilities in Fluent Bit, used in billions of containers, enable remote code execution and cloud infrastructure takeovers.

Read more
AI NewsCybersecuritySupply Chain Attacks

Second Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential Theft

25,000+ GitHub repos compromised by Sha1-Hulud via npm preinstall scripts stealing cloud credentials.

Read more
AI NewsCybersecurityMalware

ShadowPad Malware Exploits WSUS Vulnerability for System Access

ShadowPad malware is actively exploiting CVE-2025-59287 in WSUS, leading to full system compromise of vulnerable servers.

Read more
AI NewsCybersecurityAI Ethics

Vision Language Models Keep an Eye on Physical Security

Vision language models now enhance physical security with real-time monitoring, as seen in Ambient.ai's Pulsar system.

Read more