Tag: emerging threats
3134 articles
Drones to Diplomas: Exclusive Damning $25M Essay Mill Link
Get the inside scoop on a $25M essay mill tying drones to diplomas—our exclusive exposé reveals how the scheme works and why it matters for students and educators alike.
Most Parked Domains Exclusive: Malicious Content Surge
Surprising new data shows most parked domains are now hosting malicious content—discover why parked domains are becoming a growing security risk and what easy steps you can take to stay protected.
SMS Phishers: Exclusive Warning on Deceptive Points Scams
Think twice before tapping that text about an unclaimed tax refund or rewards — it could be a modern smishing trap. Commercial phishing kits now spin up lifelike checkout pages and spoof trusted senders to steal card data and convert it into fast, hard-to-trace mobile wallet cashouts.
SMS Phishers Exclusive: Dangerous Scams Hit Points, Taxes
That “urgent package” or “unclaimed tax refund” text could be a smishing trap — attackers are now using turnkey phishing kits to steal card details and even slip them into Apple Pay or Google Wallet. With fake storefronts and rewards‑point bait, fraud looks more like legitimate tap‑to‑pay than ever.
Meet Rey: Exclusive Look at Best-Run Lapsus$ Hunters
When Rey — long the shadowy operator and public face of the Scattered LAPSUS$ Hunters — agreed to be identified and speak, the story shifted from faceless hacks to a real person whose groups social‑engineering tactics fueled costly data thefts. That rare revelation forces hard questions about motive, responsibility, and how we defend against attacks that prey on human error.
Meet Rey: Exclusive Profile of Controversial Admin
Meet Rey—the pseudonymous face of Scattered LAPSUS$ Hunters—who unexpectedly lifted his veil after KrebsOnSecurity traced him to his father and secured an interview. That admission could shatter the groups anonymity and change the game for investigators, rivals and recruits.
Android TV Exclusive: Dangerous Botnet Risk Revealed
Think that bargain Android TV box is just for streaming? Security researchers warn Superbox devices can quietly turn your home network into a botnet relay, routing criminal traffic and exposing you to fraud and legal trouble.
Android TV streaming box: Exclusive Dangerous botnet alert
Think twice before buying a bargain Android TV streaming box—some models quietly turn your home network into a botnet relay, routing illicit traffic that can slow your connection, invade your privacy and even expose you to legal risk. Here’s what to watch for so convenience doesn’t end up costing you more than you bargained for.
Android TV Streaming Box Danger: Exclusive Security Alert
If it sounds too good to be true, it probably is — investigative reporting reveals Superbox firmware can turn your Android TV into a hidden internet relay, exposing your home network to fraud and account-takeover schemes.
UK government Exclusive cyber-law exemption weakens trust
The UK government proposes swapping statutory cyber‑security duties for voluntary promises to meet the same standards. After a year of high‑profile breaches, can goodwill really replace enforceable rules and restore public trust?
Hackers Exclusive Tactics: Best Defense vs ICE Surveillance
What happens when ICE surveillance tools outpace the rules meant to control them? This report digs into how commercial forensics like Paragon help investigators crack cases — and why secrecy, corporate transfers, and lingering dual‑use risks keep civil‑liberties groups sounding the alarm.
Putinswap Exclusive: Stunning, Controversial Prisoner Swap
Was justice bargained away? In the controversial Putinswap, France freed a man accused of aiding a high-profile ransomware network to secure a Swiss NGO consultants return from Russia, igniting fierce debate over extradition, accountability and the price of geopolitical deal‑making.
Putinswap Exclusive: Controversial Ransomware Swap
When diplomacy, law enforcement and cybercrime collide, messy deals get made. France’s controversial exchange — freeing a man accused of acting as a ransomware payment negotiator in return for a Swiss NGO consultant detained in Russia — raises urgent questions about justice, precedent and who we choose to protect.
QR codes Exclusive Threat: Pyongyang’s Dangerous Phishing
Think twice before you scan: the FBI warns North Korean hackers are using QR-based quishing to turn innocent-looking codes into multi-step traps that steal cloud credentials and bypass enterprise defenses.
QR codes Stunning Pyongyang Phishing Threat
QR codes have gone from handy shortcuts to attack vectors—North Korean actors are using QR-based phishing to steal cloud credentials by hiding multi-step payloads inside seemingly legitimate scans. The real question now isnt whether to scan, but how to verify what the square tells you.
Grok Exclusive: UK Weighs Damaging AI Undressing Ban
When UK regulators sounded the alarm over AIs ability to generate photorealistic, non-consensual imagery, X restricted Grok’s image tool — sparking the urgent question: should limits come from the code, the company, or the law? The move shows how quickly experimental tech can become a real-world threat to privacy and safety.
VMware ESXi exploited by China-linked hackers: Exclusive
What if the hypervisor that protects your virtual machines became the door into your entire datacenter? Huntress says China-linked hackers had a working VMware ESXi escape kit and were exploiting it more than a year before the bugs were disclosed, leaving organizations dangerously exposed.
China-linked cybercrims Exclusive: Critical ESXi Zero-Day
China-linked cybercrims reportedly sat on a working ESXi escape kit for more than a year — letting attackers jump from guest VMs to ESXi hosts and rip through virtual infrastructure. The real question now: how many organizations already paid the price before anyone even knew an ESXi zero-day existed?
Patch Cisco ISE bug now: Exclusive Critical Fix Alert
Think of your ISE as the keys to your network—don’t leave them under the doormat: patch the Cisco ISE bug now. A critical flaw in ISE and ISE‑PIC (with a public proof‑of‑concept) can let remote attackers with admin access steal sensitive data.
Ransomware Exclusive: Stunning Worst Surge of 2025
Think ransomware was fading? The 2025 ransomware surge proves otherwise—smarter, faster attacks (retail incidents jumped 58% in Q2) are crippling stores, exposing data and stretching insurers and regulators to the breaking point.
CrowdStrike Must-Have Deal Secures Identity Effortlessly
CrowdStrike’s $740M SGNL move is a must-have play in identity security—shifting the fight from “who are you?” to “what are you allowed to do?” as runaway machine identities like API keys and AI agents open easy paths for attackers. The goal: give enterprises the visibility and governance to find and lock down forgotten or over‑privileged non‑human accounts before they cause breaches.
Ransomware Exclusive: Alarming Rise in 2025 Attacks
Think 2025 would be the year ransomware cooled off? Think again—publicly disclosed ransomware incidents spiked dramatically as attackers pivoted to fast, high-volume strikes that hit retailers, healthcare, local governments and small businesses with encryption, data theft and public shaming, costing victims downtime, fines and shattered trust.
Patch Cisco ISE bug: Must-Have Critical Fix Now
A critical Cisco ISE bug now has public proof‑of‑concept exploit code — apply Cisco’s patch immediately to secure your network access controls or risk exposing one of your most sensitive systems. Updates may be disruptive, but this is one you don’t want to delay.
CISA Warns: Exclusive HPE Flaw, Critical Office Relic
CISA has flagged a max‑severity HPE OneView vulnerability and a decades‑old PowerPoint bug as actively exploited—proof that old code and privileged management consoles are irresistible targets. Patch fast and lock down your infrastructure before attackers turn one compromise into a systemic breach.