Tag: infosecurity magazine
36 articles

Phantom Stealer Emerges as Sophisticated Stealer-as-a-Service Tool
Imagine your entire online life being stolen and sold for just a few hundred dollars - that's the harsh reality with Phantom Stealer, a powerful and stealthy tool that's making it easy for cybercriminals to get their hands on your sensitive information. This sophisticated .NET-based stealer can harvest everything from login credentials to payment card details, putting your digital identity at risk.

CISO Pay Exclusive: 7% Rise Amid Sluggish Budgets
CISO compensation rose roughly 7% in 2025 even as cybersecurity budgets stalled — a striking mismatch that leaves security chiefs shouldering bigger responsibilities with fewer resources and forces boards to rethink priorities.

investment scam: Shocking, Risky Deepfake Google Ads
Scammers are buying top search spots and using AI deepfakes to impersonate Singapore officials, creating convincingly official sites that trick investors into wiring funds. Learn simple checks—verify .gov.sg domains and contact agencies directly—to avoid falling for these high-tech cons.

EtherHiding: Exclusive Risky Crypto Heist Warning
What if the blockchain meant to protect your funds became a hiding place for thieves? Google warns North Korea-linked hackers are using EtherHiding—embedding malware in Ethereum transactions—to siphon crypto, forcing defenders to rethink how they detect and stop attacks.

Lumma Stealer: Shocking Risky Reputation Exposure
A rival cybercrime group has publicly doxxed the operators behind Lumma Stealer, ripping away their secrecy and wreaking reputational havoc while creating both intelligence opportunities—and dangerous misinformation—for defenders, victims, and investigators.

data breaches: Stunning, Alarming Q3 — 23M Victims
Over 23 million people had personal data exposed in Q3, according to the ITRC — a wake-up call that privacy can’t be an afterthought as breaches across sectors put identities, finances and long-term security at risk.

GXC Team: Exclusive Arrest Signals Dangerous Shift
Spanish police arrested a 25‑year‑old accused of leading the GXC Team, a group investigators say sold malware and AI‑enabled attack tools like commercial products. The takedown highlights how cybercrime is becoming a turnkey business—and why businesses, policymakers and everyday users need to harden defenses and push for better international cooperation.

BreachForums domain: Stunning Crucial Takedown Win
The FBI and French police just knocked BreachForums offline, disrupting a major marketplace for stolen data. It’s a bold win — but domain seizures are only a pause unless paired with sustained investigations, stronger security practices, and international cooperation.

ClayRat spyware: Exclusive Risky Android Threat
Imagine a trusted Telegram app secretly scanning your messages, recording calls and sending everything off-device — that’s exactly what the new ClayRat spyware campaign is doing by spreading fake Android APKs through Telegram channels. Avoid sideloading, tighten app permissions, and treat APK links with suspicion to stop your phone from becoming a surveillance tool.

free VPN apps: Risky Secrets & Must-Have Warning
Think “free VPN” means safe? A Zimperium study shows many no-cost VPN apps harbor serious flaws that can leak your data or let attackers intercept traffic — so choose reputable, audited services or risk trading privacy for peril.

Android remote access trojan: Exclusive Risky Threat
“If you can see nothing, they can take everything” — Klopatra is a stealthy new Android remote-access trojan that quietly hijacks phones to steal banking credentials, intercept one-time codes, and automate fraudulent transactions. Stay vigilant: only install apps from trusted stores, scrutinize accessibility and overlay permissions, and push behavioral mobile security and out-of-band authentication to blunt these targeted, modular attacks.

supply chain breach: Risky Harrods Alert — Must-Read
If you shopped online at Harrods, a supply‑chain breach may have exposed customer data — a reminder that even luxury brands aren’t immune when a trusted vendor is compromised. Check your accounts, enable MFA, and watch for phishing while retailers tighten vendor security and transparency.

malicious AI agent: Stunning Dangerous Email-Theft Threat
Researchers say a seemingly legit npm package linked projects to a remote AI agent server that crawled and siphoned email content — possibly the first malicious “MCP” seen in the wild. It’s a wake‑up call to vet dependencies, tighten supply chains, and monitor CI/network egress before agentic AI becomes a standard attack tool.

third-party breaches: Stunning, Risky Wake-Up Call
Stellantis warns a third‑party supplier may have exposed customer personal data, leaving millions wondering what may actually means. Customers deserve clear answers about who was affected, what was leaked, and what protections will be offered.

hardcoded secrets: Stunning Risky Mobile Crisis
One in three Android apps — and over half of iOS apps — are leaking sensitive data through insecure APIs and hardcoded secrets, putting your personal info and company systems at risk. Luckily, with smarter developer practices, better tooling and a few simple precautions, we can close those easy doors before attackers walk through.

data poisoning: Stunning Dangerous Surge in Firms
New research shows about one in four UK and US firms have faced data poisoning attempts that corrupt AI training data — a stealthy threat that can make models misbehave, leak sensitive information, or embed persistent backdoors. It’s a wake-up call: protecting AI means treating data integrity as a first-line defense.

supply chain attack: Stunning, Risky Threat to Passengers
LNER has confirmed a supply-chain attack on a third-party supplier exposed some customers’ contact and journey details, and the company is notifying those affected and offering support. If trusted partners can become breach points, passengers are rightly asking who’s protecting their privacy.

AI-powered operations: Stunning Exposure, Defender Win
An attacker’s bid for stealth backfired when legitimate security software exposed their AI‑assisted playbook — Huntress telemetry captured model‑like artifacts that turned a covert campaign into a forensic treasure trove, proving AI speeds attacks but also leaves telltale traces defenders can use.

supply chain attack: Stunning Near-Miss, Risky Lessons
A fast, coordinated open‑source response helped avert what could have been a massive npm supply‑chain breach, but the near miss raises urgent questions for developers, maintainers and policymakers about dependency hygiene, registry controls and long‑term resilience.

Axios user agent Dangerous Surge: Must-Have Defense
A routine Axios user‑agent has been weaponized — ReliaQuest found a 241% surge in phishing that spoofs the header to evade filters and increase clicks. Security teams need to stop trusting user‑agent strings alone and adopt layered defenses before attackers scale this trick further.

supply-chain attack: Shocking Risky Breach Exposes 30K
Wealthsimple has confirmed a supply‑chain breach that exposed personal data for about 30,000 customers — while account balances and passwords weren’t affected, the incident is a sharp reminder to stay alert for phishing and to monitor your accounts. The firm says it’s notifying those impacted and working with the vendor to investigate and strengthen protections.

SAP S/4HANA vulnerability: Critical Risky Threat
A critical SAP S/4HANA vulnerability (CVE-2025-42957) is already being exploited in the wild, turning routine patching into an urgent race. Inventory exposed systems, apply mitigations or patches now, and hunt for signs of compromise before attackers reach your finance and HR systems.

malicious npm package: Risky Crypto-Theft Exclusive Alert
A malicious npm package posing as the popular nodemailer email library slipped into projects with one line of dependency and carried code designed to siphon cryptocurrency—showing how a single careless install can turn a routine dependency into a financial threat. Audit your dependencies, pin versions, and use supply‑chain tools—convenience shouldn’t cost you your wallet.

Rapper Bot: Shocking Dangerous Takedown
A 22-year-old Oregon man has been federally charged with allegedly running the Rapper Bot DDoS-for-hire service, a stark reminder that curious tools can become dangerous weapons — and that taking down botnets requires both prosecutions and better device security and defenses.