Tag: emerging threats
3139 articles
Lapsus$ Hunters Pose Dangerous, Exclusive Threat to Zendesk
Patchable missteps meet crowd‑powered coercion: Scattered Lapsus$ Hunters are resurfacing with new phishing domains and social‑engineering tricks aimed at support tools like Zendesk. Compromised help‑desk credentials can give attackers an exclusive backdoor into customer and corporate data—so small lapses can have big consequences.
Shai-Hulud v2 Exclusive: Dangerous Spread Exposes Secrets
Shai‑Hulud’s second wave has jumped from npm into Maven, turning trusted packages into a secret‑stealing worm that probes CI and environment tokens and self‑replicates through dependencies. If you build or secure software, now’s the moment to rotate credentials, harden pipelines, and vet every dependency.
Cyber-Attack Exclusive: Severe OnSolve CodeRED Outage
Imagine the sirens going silent: when INC Ransom hit OnSolve’s CodeRED, communities missed vital alerts and scrambled to improvise slow, unreliable backups. The outage — and exposed user data — lays bare how dangerously dependent public safety has become on just a few commercial providers.
FBI Exclusive: Stunning $262M Costly Account Takeovers
Imagine waking to find your bank account emptied by someone who cloned your bank’s site — the FBI says over $262M has been lost to account takeover scams since January 2025. Learn how phishing, credential stuffing and fake reporting pages let criminals turn stolen logins into instant cash — and what you can do to stop them.
Gainsight Cyber-Attack Exclusive: Critical Salesforce Hit
A Gainsight cyber attack has critically hit Salesforce—here’s what happened and the immediate steps you need to protect your data and your org.
Chrome Extension Exclusive: Malicious Raydium Solana Fees
Think your trading extension has your back? Researchers uncovered Crypto Copilot — a Chrome add-on that stealthily skimmed tiny fees off Raydium Solana swaps to an attacker-controlled wallet, a stark reminder to vet permissions before installing extensions.
HashJack Exclusive: Dangerous Injection Weaponizes Websites
Meet HashJack — a new technique that turns everyday websites into traps for AI‑enabled browsers and automated agents, tricking them into leaking session tokens and secrets with a convincing prompt. What feels like a harmless CAPTCHA or verification dialog can quietly hand attackers the keys to your account until those tokens are revoked.
London Councils Hit by Serious Exclusive Cyber Incidents
At least three London boroughs are battling a serious cyber incident that’s disrupted services and shown how ageing council IT can turn targeted attacks into city-wide crises. As teams scramble to contain the breach and keep vital functions running, this episode highlights a worrying UK trend: fewer incidents, but far greater damage.
RomCom: Exclusive Warning on Dangerous SocGholish Malware
Exclusive warning: attackers are now pairing the SocGholish social-engineering loader with the RomCom malware family to deliver Mythic Agent via convincing fake update prompts, turning routine installs into persistent backdoors. Read on to see how this clever combo exploits trusted software and everyday habits—and what you can do to stop it.
FBI Reveals Stunning Rise in Costly AI Phishing Scams
Imagine a voicemail that sounds exactly like your daughter begging for help — only its a scam. The FBI warns cheap AI tools are fueling a surge of hyper‑personalized phishing scams that have already cost victims hundreds of millions and can fool individuals, businesses, and banks alike.
Smishing Triad Impersonation Campaigns: Exclusive Threat
Think that bank-looking text is really from your provider? Smishing Triad attackers now pair believable sender IDs with lookalike Egyptian domains, SIM farms and hijacked devices to harvest credentials and bypass 2FA—one click can mean compromise.
JackFix Exclusive Alert: Dangerous Fake Windows Updates
Heads up — don’t paste that “Windows fix” command: a slick new scam uses fake CAPTCHAs and cloned sites to trick users into running malware that gives attackers persistent access to otherwise patched PCs.
FlexibleFerret Exclusive: Dangerous macOS Go Backdoor
Think a harmless Mac script cant hurt? FlexibleFerret proves otherwise — a modular, multistage campaign that uses staged shell/AppleScript and a Go-based backdoor to quietly harvest credentials and maintain stealthy, long-term access across macOS systems.
Hackers Hijack Blender Assets: Exclusive StealC V2 Threat
Beware: malicious .blend files on popular asset marketplaces are silently deploying StealC V2 to steal credentials and tokens the moment you open them. Artists and studios should vet downloads, update tools, and treat free assets with caution.
AI Deepfake Stunning Surge: Identity Fraud Worsens
Identity fraud has entered a new era: generative AI churns out eerily lifelike voices and videos that let scammers impersonate bosses, loved ones and officials with uncanny accuracy. As these deepfake-enabled schemes become cheaper and harder to spot, individuals and businesses must rethink how they verify trust.
CISA: Exclusive Critical Spyware Threat to Signal, WhatsApp
CISA warns that commercial spyware and remote‑access trojans are being used to compromise Signal and WhatsApp—often via social engineering and sideloaded apps—turning everyday messaging into a gateway for stolen messages, media and device data.
Fluent Bit Critical Flaws Reveal Stunning Security Risks
Imagine the tool that watches your systems being used to hide intruders—that’s the risk exposed by critical flaws in Fluent Bit, which researchers say can let unauthenticated attackers corrupt, intercept, or take over telemetry pipelines. If you run Fluent Bit in clouds, containers, or edge devices, now’s the time to hunt, patch, and harden those deployments before attackers turn your logs into cover.
Russian-linked Malware: Dangerous, Stunning Blender Threat
Think twice before opening that .blend—Morphisec found Russian-linked StealC V2 hidden inside Blender project files, so importing a shared 3D asset can trigger a stealthy multi-stage stealer. Artists and studios should start treating downloaded .blend files like potential executables until vetting becomes routine.
CISA Warns: Must-Fix Critical Oracle OIM Flaw
CISA added a critical Oracle Identity Manager flaw to its Known Exploited Vulnerabilities list, meaning attackers are already targeting it. If you handle identity systems, prioritize patching or mitigations now—an unpatched OIM bug can hand intruders the keys to your environment.
Iberia Airlines Exclusive: Critical Supply Chain Breach
When Iberia alerts customers that a supplier was compromised, it’s a reminder that a single supply‑chain breach can ripple into delays, data exposure and broader operational headaches across modern travel. If you got the email, here’s what it means for your trip and what to look out for next.
Cybercriminals Exploit Push Notifications: Stunning Risks
Think your browsers push alerts are harmless? Cybercriminals are hijacking browser push notifications and fake verification prompts to deliver stealthy malware and persistent backdoors, turning everyday web conveniences into covert attack channels.
Grafana Critical Patch Fixes Stunning CVSS 10.0 SCIM Flaw
Grafana released urgent patches for a CVSS 10.0 SCIM vulnerability that could let authenticated attackers escalate privileges or impersonate users—apply the update now and review your SCIM configs and logs.
Gainsight Exclusive: Critical Hack Risks Salesforce Clients
Urgent heads-up: a critical Gainsight hack could expose Salesforce clients’ data—here’s what happened and how to protect your systems.
SEC Stunning Move Drops SolarWinds Case, Costly Fallout
The SEC’s abrupt request to dismiss its high‑profile lawsuit over the 2020 SolarWinds supply‑chain breach has left investors, technologists and policymakers wondering what it signals about enforcement, deterrence and the limits of cyber regulation. After years of litigation that promised to redefine how securities law treats cybersecurity, the surprising reversal raises urgent questions about accountability and how companies should disclose cyber risk.