Latest Cybernews

Surge in Infostealer Attacks Threatens EMEA Cybersecurity
Organizations in the EMEA region are facing a 58% increase in infostealer attacks, with over 10 million stolen login credentials being sold on the dark web, highlighting vulnerabilities in security practices and the growing sophistication of cybercriminals.
View full story…

Rise Of Infostealers Targets Password Managers
Infostealers have surged in cybercrime, with 25% of malware samples in 2024 aimed at stealing credentials from password managers, employing advanced techniques like memory scraping and process injection.
View full story…

Sophisticated Dropper Malware Targets System Binaries For Remote Control
A sophisticated dropper malware checks for root privileges, overwrites legitimate system binaries, and establishes a connection to a remote command-and-control server, posing significant security risks.
View full story…

Web Skimming Attack Compromises Data of Casio UK Customers
A sophisticated web skimming campaign has stolen credit card and personal information from visitors to at least 17 organizations, including Casio’s UK subsidiary, by exploiting vulnerabilities in e-commerce security measures.
View full story…

UK Government Faces Urgent Cybersecurity Challenges Amid Significant Vulnerabilities
A National Audit Office report reveals critical deficiencies in the UK government’s cyber resilience, highlighting the urgent need for action to address staffing shortages and outdated IT systems following recent cyber incidents.
View full story…

Phishing Campaign Targets Microsoft ADFS Users, Exploiting SSO Vulnerabilities
A sophisticated phishing campaign is targeting organizations using Microsoft’s legacy Active Directory Federation Services (ADFS), exploiting vulnerabilities in single sign-on solutions to harvest user credentials and bypass multi-factor authentication.
View full story…

Salt Typhoon Cyberattacks Expose Major Vulnerabilities in U.S. Digital Infrastructure
The Salt Typhoon cyberattacks, attributed to a Chinese hacker group linked to the Ministry of State Security, compromised sensitive data across American telecommunications networks, raising significant national security concerns and highlighting critical flaws in digital security measures.
View full story…
Latest Cybernews

EU Sanctions Russian Hackers Linked to Cyberattacks on Estonia
The Council of the European Union has imposed sanctions on three Russian hackers from GRU Unit 29155 for their involvement in significant cyberattacks against Estonian government agencies, resulting in the theft of sensitive data.
View full story…

UK Government Introduces Updated AI Cyber Security Code of Practice
The UK government has launched a revised voluntary AI Cyber Security Code of Practice to enhance the security of AI systems and mitigate cybersecurity risks, developed in collaboration with Kainos and supported by various stakeholders.
View full story…

Sophisticated Phishing Campaign Targets High-Profile Accounts on X
A sophisticated one-click phishing campaign has been identified, targeting high-profile accounts on the social media platform X (formerly Twitter) to promote fraudulent cryptocurrency schemes, with attackers employing various tactics to hijack accounts and mislead users.
View full story…

Increase in Exploited Vulnerabilities in 2024
In 2024, the number of actively exploited vulnerabilities rose to 768, marking a 20% increase from the previous year, highlighting ongoing challenges in cybersecurity.
View full story…

North Korean Nationals Charged in Fraudulent IT Scheme to Evade US Sanctions
The US Justice Department has indicted several individuals, including North Korean and Mexican nationals, for orchestrating a fraudulent scheme that secured remote IT work with American companies to generate revenue for North Korea, involving identity deception and unauthorized access to corporate finances.
View full story…

DeepSeek Faces Security Challenges Amid DDoS Attacks and Malicious Prompt Exploits
DeepSeek, a Chinese Large Language Model, has encountered critical vulnerabilities in detecting malicious prompts and has been targeted by multiple Distributed Denial of Service attacks, raising concerns about its security in the gig economy.
View full story…