A new report reveals that data sovereignty has become a paramount concern for global business leaders, with every surveyed executive re-evaluating their data strategies. The shift is driven primarily by escalating geopolitical risks and the potential for significant reputational damage, indicating a move beyond mere compliance. The qualitative survey, conducted…

Dashcams, lauded as vigilant digital co-pilots for drivers, are facing a stark new security revelation. Researchers have demonstrated that these seemingly secure devices can be hijacked by hackers in seconds, transforming them into potent surveillance tools capable of gathering sensitive data. This alarming discovery, unveiled at the Security Analyst Summit…

Cybercriminals are increasingly leveraging AI tools to launch sophisticated attacks against WhatsApp Web users, a trend highlighted by the emerging “Water Saci” campaign. This campaign, primarily targeting Brazilian users, utilizes compromised WhatsApp accounts to distribute banking trojans and illicitly obtain sensitive financial information. By sending malicious attachments through trusted contacts,…

Hackers are increasingly employing a sophisticated adversary-in-the-middle tool known as Evilginx to bypass multi-factor authentication (MFA) and compromise cloud accounts. This advanced toolkit effectively mimics legitimate single sign-on (SSO) portals, presenting a deceptive interface to users and allowing attackers to steal session cookies and tokens. Infoblox security analysts have observed…

Ukraine-linked hackers are escalating their cyberattacks against Russian aerospace and defense companies, employing newly developed custom malware to exfiltrate sensitive design blueprints, production schedules, and internal communications. This intensified cyber campaign, detailed by security analysts, targets the entirety of Russia’s war industry, from major contractors to smaller specialized suppliers, aiming…

Insider threats continue to be a significant cybersecurity challenge, often evading detection by blending into normal operations. These insidious attacks don’t typically present obvious warning signs, instead revealing themselves through subtle, anomalous activities within legitimate user accounts. Nisos, a cybersecurity firm, has detailed earlier signs of insider detection specifically through…

Candiru, an Israeli-based spyware vendor, is actively deploying a sophisticated malware infrastructure across multiple countries, targeting high-value individuals including politicians, journalists, and business leaders with its DevilsTongue spyware. This advanced threat to Windows users has established eight distinct operational clusters in nations such as Hungary, Saudi Arabia, Indonesia, and Azerbaijan,…

A new malware family, dubbed Arkanix Stealer, is actively targeting home users and small businesses by exploiting their reliance on VPN clients and Wi-Fi networks. This sophisticated information-stealing malware aims to pilfer sensitive data including VPN account credentials, saved Wi-Fi profiles, browser login information, and even desktop screenshots, providing attackers…

The popular third-party YouTube client, SmartTube, has been compromised due to exposed developer signing keys, leading to the malicious embedding of code within official releases. Google has responded by forcibly disabling the application on affected Android TV devices, marking a significant security crisis for the community. This incident highlights the…

A sophisticated malware campaign is actively distributing trojanized installers for popular applications like Telegram, WinSCP, Google Chrome, and Microsoft Teams to deploy ValleyRat, a potent remote access trojan. This campaign has been attributed to Silver Fox, a China-aligned advanced persistent threat (APT) group observed to be active since at least…

The Glassworm malware campaign has resurfaced, deploying 24 malicious extensions across Microsoft Visual Studio Marketplace and OpenVSX marketplaces over the past week. This significant escalation highlights the ongoing threat posed by supply chain attacks targeting developer tools, impacting platforms essential for software development. These malicious extensions meticulously clone legitimate packages…

A sophisticated cybercrime group known as ShadyPanda has been implicated in a massive malware campaign that has compromised an estimated 4.3 million users of Google Chrome and Microsoft Edge browsers. For seven years, the threat actors operated undetected, leveraging malicious browser extensions that gained official approval from both Google and…