Tag: emerging threats
3148 articles
CISA Exclusive: Stunning WatchGuard Flaw Threatens 54,000
Heads up: a critical unauthenticated bug (CVE‑2025‑9242) in WatchGuard Fireware VPN appliances can let attackers execute code and seize VPN gateways, putting roughly 54,000 devices at risk. CISA has added it to its KEV list — apply WatchGuard’s patches and lock down management interfaces immediately.
GlobalLogic Exclusive: Severe Oracle EBS Cl0p Attack
GlobalLogic pulls back the curtain on a severe Cl0p Oracle EBS attack. Learn what went wrong, who’s at risk, and the simple steps you can take now to protect your systems.
Cyber-Insurance Payouts Soar 230% UK Stunning Costly Spike
Think cyber insurance is a safety net? With UK payouts up 230% in 2024, rising ransoms and recovery bills are forcing businesses and regulators to rethink who will shoulder the real cost of cyber attacks.
Microsoft Fixes Kernel Zero Day: Stunning Critical Patch
Microsoft just patched an actively exploited Windows kernel zero‑day — a high‑stakes reminder that prompt patching can be the difference between a quiet night and a full system compromise. If you manage systems, prioritize this Patch Tuesday update now to protect identity, servers, and other critical endpoints.
WhatsApp Malware Exclusive: Brazil Banks’ Worst Threat
Imagine the app you use to call your mother being used to rob her bank — thats Brazils new reality as researchers link a WhatsApp-spread program called Maverick to the Coyote banking malware family. Built in .NET to decrypt, monitor and inject into banking sessions, this WhatsApp-delivered threat marks a worrying leap in scale and sophistication against Brazilian users and banks.
Android Devices Exclusive: KONNI APT Critical Alert
Imagine the smart display on your counter becoming the remote trigger that erases the phone in your pocket — researchers warn a North Korean-linked group called KONNI is abusing Google’s Find My Device and device-management features to remotely wipe Android devices. This tactic can destroy data, break two‑factor access and cripple businesses, a stark reminder that everyday conveniences can be weaponized for sabotage.
Qilin Ransomware Exclusive: Damaging Surge Hits Small Firms
Qilin ransomware has evolved into a commercialized threat that turns simple security lapses—phishing, weak credentials or exposed remote access—into crippling double‑extortion attacks on small and mid-sized firms. With affiliates and leak sites amplifying its reach, now’s the time for SMBs to shore up the basics before opportunistic criminals profit.
GootLoader WordPress: Exclusive Font Trick Is Dangerous
Think an exclusive font is harmless? Think again — GootLoader is hiding malicious JavaScript in fonts and other benign WordPress assets, letting tiny site tweaks become a fast route to full-network takeovers.
Hackers Exploit Exclusive Critical Triofox Flaw
A patch for CVE-2025-47812 didn’t stop attackers from exploiting Triofox — threat actors rapidly weaponized the remote-code-execution flaw to compromise unpatched or misconfigured instances. It’s a blunt reminder that publishing a fix isn’t protection unless organizations patch quickly and verify their deployments.
CISA Exclusive: Critical Zero-Day Added to KEV
When CISA added a critical zero-day vulnerability to the KEV, it was a blunt wake-up call — the flaw is already being weaponized by LandFall spyware against millions of Samsung devices. With federal patching now mandatory, the race is on to stop real-world attacks and protect users’ privacy.
AI Companies: Stunning 65% Leak of Dangerous Secrets
A new study finds about 65% of leading AI companies have accidentally exposed sensitive secrets in public Git repositories like GitHub. Researchers warn those leaks — from API keys to model endpoints — could create stealthy “shadow access” and threaten roughly $400 billion in assets.
China-Aligned UTA0388 Exclusive: Dangerous AI Phishing
Imagine your inbox posing as a trusted colleague—researchers say UTA0388, a China‑aligned cluster, now uses AI to craft eerily personalized, time‑sensitive spear‑phishing that steals credentials and plants stealthy, long‑term access.
Weekly Recap: Exclusive Cyber Threats – Essential Alert
From Android spyware that turns phones into persistent surveillance hubs to malware hiding inside virtual machines and side‑channel leaks exposing AI chats, last week’s discoveries show attackers favor stealth and persistence over brute force. If you run systems, write policy, or just carry a smartphone, it’s time to harden mobile, VM, and AI defenses before that silent compromise finds a way in.
NCA Campaign Exclusive: Critical Crypto Scam Warning
Dont miss this NCA-exclusive crypto scam warning — learn the latest tricks scammers use and quick, practical steps to keep your crypto safe.
ClickFix Phishing Exclusive: Critical Hotel Malware Alert
Imagine a routine support ticket that silently installs malware—attackers are using ClickFix‑style pages sent from compromised hotel emails to steal credentials or drop remote‑access tools like PureRAT. Be cautious: don’t paste commands or log in from unexpected support links—verify the sender and the page first.
NCSC Set to Retire Web & Mail Check: Exclusive Urgent Alert
NCSC is retiring Web Check and Mail Check — if your organisation relies on them, now’s the time to act. Migrate your scans, prioritise critical assets, and find affordable alternatives before those safety nets disappear.
Microsoft Exclusive Warns of Dangerous Whisper Leak
Think encryption keeps your AI chats private? Microsoft warns that streaming language models can leak conversation topics through packet timing and size, letting a passive network observer turn traffic patterns into probabilistic guesses about what you said.
Surveillance Watch: Exclusive Mozilla Map Reveals Threat
Think surveillance is just fiction? Mozilla fellow Esraa Al Shafei’s new map reveals surveillanceware as a full-blown industry — tracking the vendors, buyers and funders who turn intrusion into commerce and putting that trade on public display.
Landfall spyware Exclusive: Dangerous 0-day Hits Samsung
LANDFALL spyware quietly used an unknown Samsung Android zero‑day to install persistent surveillance on Galaxy phones — recording calls, harvesting photos and tracking locations — until an emergency April patch finally stopped it. This narrow, high‑precision campaign is a stark reminder that one hidden bug can turn millions of devices into listening posts.
Cybercrims Exclusive: Critical .NET Time-Bomb Threat
Imagine a slow-burning digital time bomb hidden in trusted .NET NuGet packages—discovered in 2023, these malicious libraries can stay dormant for years before detonating, forcing a hard rethink of how we trust and protect the software supply chain.
Sandworm Exclusive: Deadly New Wiper in Ukraine
When code refuses to start, who do you call? Fresh reports say the Russian-linked Sandworm group unleashed a new wiper malware that’s erasing backups and crippling Ukraine’s government, energy, logistics and grain networks—threatening cascading disruptions from ports to hospitals.
Google Maps Launches Exclusive Effortless Tool vs Extortion
When a one-star review reads like a ransom note, Google Maps is giving small businesses a direct line to fight back. The new dedicated form makes reporting review bombing and extortion attempts effortless, helping protect reputations and revenue.
Gootloader malware: Exclusive alert on Dangerous Ransomware
Gootloader malware is back — a JavaScript loader that can turn a single click into a full domain takeover in roughly 17 hours. Learn how its stealthy delivery and lightning-fast lateral movement make fast, modern defenses essential.
Cisco Exclusive: Critical Firewall Exploit Hits 6 Months
Six months on, the Cisco firewall exploit has morphed from a footnote into a full-blown crisis—attackers are actively targeting ASA and FTD devices, and U.S./U.K. agencies are shouting “fix it now” as organizations race to patch and contain systemic risk.