Tag: emerging threats
3134 articles
Advantest Faces Stunning Ransomware Hit, Critical Impact
Advantest — the company behind the test gear that keeps chips flowing into our phones and cars — has activated incident response after a ransomware-related cybersecurity incident. How quickly it contains the breach will decide whether this becomes a brief disruption or a far-reaching supply-chain crisis.
Advantest Exclusive: Costly Ransomware Attack Reported
Advantest has reported a cybersecurity incident — a costly ransomware attack that could ripple across global semiconductor supply chains. With few details released as incident response continues, customers and nations face the prospect of production delays, lost revenue and strategic headaches.
Jackpotting Surge: Stunning, Costly $20M Hit to Banks
An FBI alert reveals ATM jackpotting cost banks $20M in 2025—criminals are now turning cash machines into programmable paydays by exploiting unpatched systems, weak credentials, and supply‑chain gaps. It’s a wake‑up call that security isn’t just about tech—people and processes matter too.
Jackpotting Stunning Surge: FBI Warns of Costly Bank Losses
When ATMs suddenly start spitting out cash, it’s not a glitch — it’s ATM jackpotting, and the FBI warns these coordinated attacks cost banks about $20 million in 2025 alone. As criminals automate exploits and prey on legacy systems, banks are racing to stop mass cash-outs and the costly fallout that follows.
University of Mississippi Medical Center Offline: Shocking
When a ransomware attack knocked the University of Mississippi Medical Center offline, clinicians were reduced to paper charts and radios while appointments and critical systems stalled. Its a stark reminder that cybercrime now threatens not just data and dollars, but patient care and safety.
UK data watchdog fines Reddit £14.47M: Stunning oversight
The UK data watchdog just hit Reddit with a £14.47M fine for retaining and using young users data without a clear lawful purpose. Reddit plans to appeal, but the ruling makes plain that public conversation isn’t a get-out-of-jail-free card for sweeping up personal information.
Lazarus Group Exclusive Medusa Strikes Critical Healthcare
Get the inside story on how the Lazarus Group’s Medusa strike rocked critical healthcare—and what it means for patients, providers, and the future of cyber defenses.
France database: Exclusive critical leak of 1.2M accounts
An unknown attacker reportedly exfiltrated 1.2 million bank-account records from France’s central database, turning administrative efficiency into a nationwide privacy and security crisis. Read on to see what happened, who’s at risk, and how one failed lock can expose millions.
CISA Adds Two Roundcube Flaws to KEV: Exclusive Critical
CISA has added two Roundcube vulnerabilities to its KEV list — including a critical 9.9-rated RCE (CVE-2025-49113) — meaning active exploitation is underway. If you run Roundcube, patch now to protect email stores, contacts, and stop attackers from hijacking accounts.
Crims Shocking $20M ATM Malware Heist Causes Costly Loss
ATM malware jackpotting gangs walked away with more than $20 million last year, and with the FBI warning these cyber‑physical heists are on the rise, its time for banks, retailers—and everyday customers—to rethink how secure the cash we carry really is.
Poland Bans Chinese Camera Cars from Bases: Exclusive Risk
Poland has banned Chinese camera cars from military bases, forcing a simple question: when does convenient tech become a security risk? By inviting trusted Western firms like Dell to help build a local LLM, Warsaw is signaling it’ll pick partners it trusts over blanket openness.
Texas sues TP-Link: Exclusive Damaging Security Claims
Texas is suing TP‑Link, accusing the company of labeling TP‑Link routers “Made in Vietnam” while relying on China‑dominated manufacturing and supply chains. The suit also says devices were marketed as secure despite exploitable firmware flaws that have been actively used, turning cheap home routers into a consumer and national‑security headache.
Palo Alto CEO Exclusive: AI Risky for Business, Yet
Nikesh Arora of Palo Alto warns AI is irresistible—but also a new form of enterprise risk. Companies are racing to deploy LLMs and coding assistants, yet boards and CISOs must pair ambition with guardrails to prevent model poisoning, data leaks and costly failures.
Chrome extensions Exclusive: Malicious AI steal API keys
Before you add that shiny AI assistant to Chrome, pause: researchers found 30+ extensions secretly siphoning API keys, emails and other sensitive data from hundreds of thousands of users. What promised convenience turned into a fast track for credential theft and account takeover.
Legacy systems failing: Exclusive ministers vow no repeat
Ministers promise no repeat, but ageing, brittle IT and procurement shortcuts are slowing the fixes that would stop another life‑threatening leak — read on to see why promises need firm deadlines and measurable progress.
TGR-STA-1030 Exclusive: Severe Breach Hits 70 Sites
Meet TGR-STA-1030: a stealthy Asia-based espionage crew that’s quietly breached at least 70 government and critical‑infrastructure networks across 37 countries, using bespoke tools, credential harvesting and meticulous reconnaissance to keep long‑term, hard-to-detect access to telecom and communications systems.
WinRAR Vulnerability: Exclusive Critical Windows Threat
Imagine a trusted ZIP becoming the key to your PC—researchers warn a critical WinRAR flaw (CVE‑2025‑8088) is being actively exploited to run code on Windows and has been tied to the Amarath‑Dragon espionage group. If you use WinRAR, treat this as urgent: patch, avoid untrusted archives, and scan your systems now.
PSNI Exclusive: Universal £7,500 Payout Delivers Relief
The PSNIs Universal £7,500 Payout offers immediate breathing room to staff hit by last year’s data breach, helping cover short-term costs and stress. But it’s only a first step — lasting recovery will need counselling, identity protection and stronger security measures.
StopICE Hacked: Exclusive Alarming Agent Sabotage Claims
StopICE is warning users after an alarming incident: a suspected CBP agent allegedly sent unauthorized push notifications and texts falsely claiming users’ data were handed to authorities. The group says it doesn’t store usernames or addresses, but the scare shows how easily reporting can be intimidated.
eScan Antivirus Exclusive: Servers Breached, Severe Malware
Imagine your antivirus becoming the delivery system for malware — that’s what happened when eScan antivirus update servers pushed persistent downloaders and staged payloads to thousands of systems. The breach shows how trusted update channels and elevated security privileges can turn supply‑chain risk into a widespread disaster.
Chinese Money Launderers: Exclusive Alarming $82bn Surge
Chinese money launderers are now tied to roughly 20% of crypto-related laundering, fueling a staggering $82 billion surge in illicit on‑chain flows. It’s a wake-up call: can today’s tracing tools and laws keep pace with this global, tech‑savvy concealment?
Konni Hackers Exclusive AI PS Backdoor Dangerous to Devs
Konni hackers are now using AI to craft convincing developer‑facing PowerShell backdoors that can turn a single compromised laptop into a supply‑chain catastrophe—if you work on builds or CI, now’s the time to harden systems with hardware MFA, reproducible builds, and artifact signing.
LastPass Warns: Critical Phishing Steals Master Passwords
If you get a frantic LastPass email demanding a 24‑hour backup, pause — its a phishing campaign trying to steal your master password, the single key that unlocks everything in your vault. Never click the links or enter your master password — LastPass will never ask for that.
Vulnerability Enumeration: Exclusive Best Practice Unveiled
Who names a vulnerability shapes who fixes it. Dive into why the new GCVE challenges the decades-old CVE system and what that means for global vulnerability enumeration, patching speed, and trust.