Tag: emerging threats
3151 articles
Google Maps Launches Exclusive Effortless Tool vs Extortion
When a one-star review reads like a ransom note, Google Maps is giving small businesses a direct line to fight back. The new dedicated form makes reporting review bombing and extortion attempts effortless, helping protect reputations and revenue.
Gootloader malware: Exclusive alert on Dangerous Ransomware
Gootloader malware is back — a JavaScript loader that can turn a single click into a full domain takeover in roughly 17 hours. Learn how its stealthy delivery and lightning-fast lateral movement make fast, modern defenses essential.
Cisco Exclusive: Critical Firewall Exploit Hits 6 Months
Six months on, the Cisco firewall exploit has morphed from a footnote into a full-blown crisis—attackers are actively targeting ASA and FTD devices, and U.S./U.K. agencies are shouting “fix it now” as organizations race to patch and contain systemic risk.
I Paid Twice Phishing: Exclusive Scam Alert for Booking.com
Think you paid the hotel twice? A sophisticated I Paid Twice phishing campaign is hijacking Booking.com, Airbnb and Expedia bookings—using injected scripts and fake payment pages to trick travelers into handing over extra payments.
Trojanized ESET Installers Expose Stunning Harmful Backdoor
Think twice before hitting Install — a May 2025 campaign used trojanized ESET installers, convincing fake vendor pages, and targeted spear‑phishing to slip a stealthy backdoor into Ukrainian victims. This attack is a stark reminder that even trusted updates and familiar brands can be weaponized for espionage.
Multi-Turn Attacks Reveal Stunning Open-Weight LLM Flaws
What if the helpful chat that answers your questions could be slowly nudged into doing harm? Ciscos analysis shows multi-turn attacks can trick open-weight LLMs into unsafe or disallowed outputs—sometimes with success rates near 90%—putting search, support, education and other services at risk.
SonicWall Exclusive: State Crew Tied to Severe Breach
Think spies, not crooks — SonicWall says a state‑backed crew accessed customer firewall configuration backups, exposing blueprints for precise, targeted attacks. If you used their cloud backups, assume compromise: rotate keys and credentials, run a forensic review, and lock down remote access now.
Hacktivist-Driven DDoS Stunning Surge Alarms Public Sector
Imagine a city more threatened by a flood of malicious internet traffic than a broken water main — last year denial-of-service attacks, many driven by hacktivists, made up about 60% of public-sector incidents, knocking out services and eroding trust without stealing a byte. With billions of poorly secured IoT devices and cheap DDoS-for-hire markets, even small groups can weaponize networks to silence government portals and disrupt daily life.
AI-Enabled Malware: Exclusive Warning of Dangerous Rise
Imagine code that writes its own crimes — AI-generated ransomware is already spawning bespoke, evasive attacks and tailored phishing that outpace traditional defenses. Security teams worldwide are racing to detect and stop these faster, smarter threats.
Google Forecasts Stunning 2026 EU Cyber-Physical Threats
Google warns Europe is likely to face a surge of cyber-physical attacks in 2026 — digital intrusions paired with disinformation that could disrupt power, transport and industry. With legacy control systems, rushed digitization and weak third-party security widening the attack surface, now’s the time to shore up defenses.
Hackers Weaponize Windows Hyper-V in Stunning EDR Evasion
Think your EDR has you covered? Attackers are enabling Windows Hyper-V on compromised machines and spinning up tiny Alpine Linux VMs to run malware out of sight of host-based sensors—making virtualization the new stealth tactic defenders must watch for.
SonicWall Exclusive Damaging State-Sponsored Cloud Breach
Imagine handing someone the wiring diagram to your house—now replace the house with your network: SonicWall says a state-sponsored actor used an API to access cloud-stored firewall configuration backups, exposing admin credentials, VPN keys and network blueprints that could let attackers slip past defenses.
Operation Chargeback Exclusive: Devastating €300m Fraud
Operation Chargeback uncovers a devastating €300m fraud — an exclusive look at how investigators dismantled the scheme and what you need to know to protect yourself.
UNK_SmudgedSerpent Exclusive: Dangerous Lures for Academics
Think your inbox is just clutter? A newly observed actor, UNK_SmudgedSerpent, is luring academics with plausible conference invites, fake collaboration requests and weaponized drafts to steal unpublished research and private correspondence—forcing universities to choose between openness and much tougher defenses.
AMD Stunning Crypto Bug Exposes Critical RNG Flaw
Could a handful of bits quietly unravel the trust behind bank logins and encrypted cloud workloads? Researchers uncovered an AMD RNG flaw in Ryzen and EPYC chips that lets local privileged operations weaken key generation—AMD has microcode patches underway, so admins should prioritize updates.
Gemini AI Exclusive: Dangerous Thinking Robot Malware
What if the AI meant to amplify our thinking could be turned into thinking robot malware that rewrites itself to hide from defenders? New research shows attackers chaining prompt- and log-injection tricks to weaponize Gemini into self-modifying, persistent surveillance agents that sidestep many standard safeguards.
M&S Exclusive: Stunning £136M Cyber Cleanup Fuels Slump
Which is worse — a day of down tills or a quiet drain on cash and trust? For M&S, Aprils cyberattack did both: systems are back, but a £136m cleanup bill now threatens cash, customer confidence and the retailer’s recovery.
SmudgedSerpent Exclusive: Dangerous Hackers Target Experts
Meet SmudgedSerpent: during the summer 2025 Iran–Israel flare-up a stealthy cyber cluster used precision social engineering to target academics and policy experts. By exploiting researchers’ networks and unpublished work, these attacks show how adversaries now shape information and influence far faster than old‑school espionage.
Claude Desktop Extensions Exclusive: Critical Prompt Risk
Claude Desktop extensions make assistants truly useful — but when they execute local actions, attackers can turn innocent prompts into harmful commands. The recent command‑injection flaws in three extensions, now patched by Anthropic, are a reminder that convenience brings new security risks.
CISA Adds Gladinet, CWP to KEV: Exclusive Critical Alert
CISA has quietly added Gladinet and Control Web Panel to its Known Exploited Vulnerabilities list after evidence of active attacks. These flaws — including CVE-2025-11371 (CVSS 7.5) — are no longer theoretical and should be prioritized for immediate patching and mitigation.
Russian spies Exclusive: Dangerous VM malware on Windows
Meet Curly COMrades — a spy group that runs a tiny Alpine Linux “shadow OS” inside a hidden Hyper‑V VM on compromised Windows hosts, letting them slip past endpoint tools and quietly harvest data, credentials and long‑term access.
French Police Seize €1.6m in Exclusive Costly Crypto Sting
How do you chase money that lives in code and shadows? French investigators and Europol answered with blockchain sleuthing and old‑fashioned detective work — freezing €1.6m and arresting nine suspects in a cross‑border crypto fraud takedown.
OpenAI Assistants API Exclusive: Critical SesameOp Backdoor
Imagine your helpful AI assistant secretly moonlighting as a command-and-control courier — researchers found the SesameOp backdoor using OpenAI’s Assistants API to stealthily ferry attacker commands and exfiltrated data. This clever pivot turns trusted productivity integrations into covert channels, forcing a rethink of how we govern and monitor AI tools.
Scattered Spider Exclusive: Dangerous Unified Collective
Imagine low‑tech social engineering and SIM swaps teaming up with mass data brokers — that’s Scattered Spider, ShinyHunters and LAPSUS$ fusing tactics to turn bulk theft into pinpoint extortion. Security teams and cloud customers now face a hybrid, high‑leverage threat targeting SaaS platforms like Salesforce.