A deceptive malicious Chrome extension, known as Crypto Copilot, has been silently siphoning cryptocurrency from unsuspecting Solana traders. Discovered by security researchers, the extension, which boasts convenient trading features, was available on the Chrome Web Store since June 18, 2024, and managed to steal funds from hundreds of users. The…

A new malware strain named ShadowV2 has emerged rapidly, aggressively exploiting Internet of Things (IoT) device vulnerabilities to build botnets for distributed denial-of-service (DDoS) attacks. First detected in late October 2025, its swift deployment across multiple industries and regions suggests a coordinated effort, potentially as a “test run” to assess…

North Korean hackers are actively exploiting popular developer platforms like npm, GitHub, and Vercel as part of a sophisticated campaign dubbed “Contagious Interview.” The goal is to distribute a potent malware known as OtterCookie, targeting software developers worldwide and compromising their development workflows. This operation highlights the evolving tactics of…

Qilin RaaS Linked to Massive South Korean MSP Breach, Exposing Over One Million Files A sophisticated cyberattack campaign, dubbed “Korean Leaks,” has significantly impacted South Korea’s financial sector. The operation, primarily attributed to the Qilin Ransomware-as-a-Service (RaaS) group, leveraged a compromised Managed Service Provider (MSP) to gain access to multiple…

Cybercriminals are exploiting the immense popularity of the upcoming game title, “Battlefield 6,” to distribute a range of malicious software. Security researchers from Bitdefender Labs have identified several campaigns that are distributing fake cracked game versions and fraudulent game trainers across torrent websites and underground forums. These malicious applications are…

Cybercriminals are actively targeting the telecommunications and media industry to deploy malicious payloads, compromising critical infrastructure and gaining unauthorized access. Recent security analyses reveal a concerning trend where threat actors are systematically focusing on network operators, media platforms, and broadcasting services. This elevated threat level underscores the sector’s vulnerability and…

Threat actors are increasingly leveraging convincing fake software update lures to distribute the dangerous SocGholish malware. This sophisticated malware delivery framework, first identified in 2017, has evolved significantly from a rudimentary web-based annoyance into a potent tool enabling widespread ransomware operations that target organizations globally. Recent campaigns highlight how easily…

Olymp Loader, a new malware-as-a-service (MaaS), has emerged and is being aggressively marketed on underground hacker forums. First advertised in June 2025 by an operator known as “OLYMPO,” this sophisticated tool is written entirely in Assembly language, aiming to attract cybercriminals with claims of high performance and resistance to reverse…

Gainsight has confirmed that a recent cyber incident targeting its applications has impacted a broader range of its customers than initially reported. The breach, which has been claimed by the notorious cybercrime group ShinyHunters, prompted Salesforce to revoke access to Gainsight-published applications and has led to precautionary suspensions of integrations…

Cybercriminals are employing a sophisticated social engineering scheme, dubbed FlexibleFerret, that exploits Apple users by tricking them into running malicious commands on their Macs. This evolving threat, attributed to North Korean operators, continues the tactics seen in the Contagious Interview campaign active throughout 2025. The malware primarily spreads through deceptive…

Quantum computing capabilities are poised to unlock significant economic value, estimated to exceed $50 billion globally. However, this technological leap also introduces substantial cybersecurity risks that businesses and governments must proactively address. A new report highlights the dual nature of this rapidly advancing field. The analysis, released by Boston Consulting…

North Korean hackers have intensified their global cyber operations, systematically violating United Nations sanctions through large-scale cryptocurrency theft and money laundering schemes. According to a recent Multilateral Sanctions Monitoring Team (MSMT) report, these illicit activities have generated billions of dollars, directly funding the Democratic People’s Republic of Korea (DPRK)’s weapons…