A consumer rights group has revealed that smart devices from Chinese manufacturers, including Xiaomi and Huawei, engage in excessive data collection, potentially compromising user privacy and security.
The 7777 botnet, allegedly connected to the Chinese government, has hijacked around 16,000 TP-Link routers to conduct sophisticated cyberattacks, including password-spraying against Microsoft Azure accounts.
A newly identified Android banking malware, ToxicPanda, has infected over 1,500 devices, primarily in Italy and Latin America, exploiting accessibility services to bypass multifactor authentication and facilitate unauthorized transactions.
The Pakistan-affiliated APT group Transparent Tribe, also known as APT36, has intensified its cyber espionage efforts against Indian entities using a newly developed malware called ElizaRAT, which showcases advanced capabilities for evasion and information theft.
A critical security vulnerability in the Android operating system, tracked as CVE-2024-43093, is being actively exploited by threat actors, including Chinese-speaking groups, allowing unauthorized access to sensitive directories and posing significant risks to a wide range of devices.
Cybersecurity researchers have identified six critical vulnerabilities in the Ollama AI framework that could be exploited for denial-of-service attacks, model poisoning, and model theft through a single HTTP request.
