Loading...
This is an archived news list from the past. Click here to view the latest news.
Cybersecurity / Malware: The popular Python package LiteLLM has been compromised by the TeamPCP hacking group, with malicious versions (1.82.7-1.82.8) containing a credential harvester, Kubernetes lateral movement toolkit, and a backdoor being published on PyPI.
Cybercrime / Dark Web: Russian authorities have arrested the alleged administrator of the LeakBase cybercrime forum, who is accused of managing a platform since 2021 that facilitated the trading of hundreds of millions of stolen user accounts, bank details, and credentials.
Cybercrime / Ransomware: A Russian national has been sentenced to two years in prison for managing the TA551 botnet, which was used to distribute malware via spam emails and facilitate ransomware attacks against over 70 U.S. companies.
Cybersecurity / Data Breach: HackerOne has disclosed an employee data breach that occurred after their benefits administrator, Navia, was compromised by attackers.
AI / Cybersecurity: Anthropic's AI coding agent was reportedly used by a state-sponsored threat actor in a cyber espionage campaign against 30 global targets, autonomously handling reconnaissance and exploit code writing, highlighting the risks of AI agents with broad access.
Cybercrime / Wiper Malware: A financially motivated group known as TeamPCP has launched a wiper attack targeting Iran, deploying a worm that destroys data on infected systems in Iran's timezone or with Farsi language settings, potentially wiping entire Kubernetes clusters.
Cybersecurity / Phishing: A new phishing-as-a-service called Starkiller is enabling attackers to bypass MFA by proxying victim traffic through attacker-controlled infrastructure, capturing credentials and session tokens in real-time.
Cybercrime / Botnets: U.S. authorities, in conjunction with Canadian and German law enforcement, have dismantled four major IoT botnets β Aisuru, Kimwolf, JackSkid, and Mossad β responsible for millions of disruptive DDoS attacks.
Cybersecurity / Data Breach: Infinite Campus, a student information system provider, is warning customers of a data breach after the "ShinyHunters" hacking group claimed to have stolen data.
Cybersecurity / Malware: The GlassWorm campaign has evolved to deliver a multi-stage framework that includes a remote access trojan and an information-stealing extension for Google Chrome, using Solana blockchain memos for command and control.
Cybersecurity / Vulnerabilities: Citrix is urging administrators to urgently patch two NetScaler vulnerabilities (one similar to past critical flaws) as they are believed to be actively exploited.
Cybersecurity / AI: A new report highlights the growing trend of paid AI accounts becoming a commodity on the dark web, being sold alongside other stolen credentials, indicating a new frontier for cybercrime.
Cybersecurity / Threat Intelligence: Device code phishing campaigns are targeting over 340 Microsoft 365 organizations across five countries using Cloudflare Workers and PaaS infrastructure for credential harvesting and OAuth abuse.
AI / Software Development: Google has introduced TurboQuant, an AI memory compression algorithm that significantly reduces the footprint of large language models and vector search engines without sacrificing accuracy, drawing comparisons to the fictional "Pied Piper" from the show Silicon Valley.
Cybercrime / Data Theft: A new info-stealing malware called Torg Grabber is targeting cryptocurrency wallets and browser extensions, stealing sensitive data from over 700 users.
Cybersecurity / Supply Chain Attack: TeamPCP has compromised the LiteLLM Python package on PyPI, injecting malicious code into versions 1.82.7-1.82.8 to steal credentials and other sensitive data.
Cybersecurity / Government: The U.S. Federal Communications Commission (FCC) has banned the sale of new consumer routers manufactured overseas, citing unacceptable cybersecurity and national security risks.
Cybersecurity / Malware: A malvertising campaign is using Google Ads to serve fake ScreenConnect installers that deploy a tool to disable endpoint detection and response (EDR) systems by abusing a Huawei driver.
Cybersecurity / AI: GitHub is integrating AI-powered bug detection into its Code Security tool to enhance vulnerability scanning across more languages and frameworks beyond its existing CodeQL analysis.
Cybersecurity / Malware: A new phishing campaign is targeting French-speaking corporate environments with fake resumes that deploy cryptocurrency miners and information stealers, utilizing legitimate services like Dropbox for payload staging.
Cybersecurity / Vulnerabilities: TP-Link has released patches for multiple vulnerabilities in its Archer NX router series, including a critical flaw that could allow attackers to bypass authentication and upload new firmware.
Cybersecurity / AI: The Bubble AI app builder is being abused in phishing campaigns to steal Microsoft account credentials, with attackers generating malicious web apps that bypass phishing detection.
Cybersecurity / Data Breach: Crunchyroll is investigating a data breach after a hacker claimed to have stolen data from over 6.8 million users.
Cybersecurity / Malware: A new campaign using seven malicious npm packages, tracked as the "Ghost campaign," is designed to steal cryptocurrency wallets and sensitive data, often employing fake installation logs to hide their activity.
Cybersecurity / Vulnerabilities: PTC is alerting users to critical vulnerabilities in its Windchill and FlexPLM software that could allow for remote code execution.
Cybersecurity / Malware: A Russian national has been sentenced to two years in prison for operating a botnet that was used to distribute the BitPaymer ransomware.
Cybersecurity / Law Enforcement: US authorities have dismantled four major IoT botnetsβAisuru, Kimwolf, JackSkid, and Mossadβthat were responsible for millions of distributed denial-of-service (DDoS) attacks.
Cybersecurity / AI: Meta is reportedly cutting several hundred jobs as it shifts its focus and resources towards artificial intelligence development.
Cybersecurity / Vulnerabilities: Microsoft has released updates to address over 50 vulnerabilities in its Windows operating systems and other software, including six zero-day flaws that were actively exploited.
AI / Software: Google has launched Lyria 3 Pro, an AI music generation model that allows users to create longer tracks of up to three minutes with improved creative control.
Cybersecurity / AI: The AI startup Harvey, which provides AI agents for legal professionals, has raised $200 million at an $11 billion valuation, indicating significant growth in the legal tech sector.
Cybersecurity / Privacy: Firefox has introduced a free built-in VPN with a 50GB monthly data limit for users seeking enhanced online privacy.
AI / Software: Google's TurboQuant algorithm can compress large language models (LLMs) by up to 6x and speed up inference by 8x without accuracy loss, potentially revolutionizing AI efficiency.
Cybersecurity / Data Breach: Crunchyroll is investigating a data breach after a hacker claimed to have accessed personal information of over 6.8 million users.
Cybersecurity / Vulnerabilities: The U.S. Federal Communications Commission (FCC) has banned the sale of new consumer routers made outside the U.S. due to security risks.
Cybersecurity / Data Breach: HackerOne has confirmed an employee data breach following a compromise of its benefits administrator, Navia.
Cybercrime / Financial: A Russian national has been sentenced to two years in prison for his role in operating a botnet used for ransomware attacks.
AI / Workforce: A report suggests that an AI skills gap is emerging, with individuals proficient in using AI tools gaining a significant advantage in the job market.
Cybercrime / Extortion: The Scattered Lapsus ShinyHunters (SLSH) group is known for employing escalating tactics, including threats of physical violence and swatting, alongside data theft and media manipulation, to extort victim companies.
Cybersecurity / IoT: The Invisible Internet Project (I2P) network has been severely disrupted by the Kimwolf botnet, which has attempted to flood the network with infected devices, causing Sybil attacks.
Cybercrime / Extortion: Iran-backed hacktivist group Handala claims to have executed a data-wiping attack against medical technology company Stryker, potentially impacting over 200,000 systems globally.
Cybersecurity / Vulnerabilities: Microsoft has patched six zero-day vulnerabilities in its latest Windows updates, including critical flaws in Windows Shell and MSHTML that could allow for privilege escalation and code execution.
AI / Software: Google has released Lyria 3 Pro, an AI model that allows users to generate longer music tracks and offers more creative control within Google products.
Cybersecurity / AI: The AI company Snyk highlights the security risks associated with AI agents, such as OpenClaw, which can be misconfigured to expose credentials and lead to supply chain attacks through their skill repositories.
AI / Startups: Deccan AI, which provides data services for AI model training and evaluation, has secured $25 million in Series A funding to expand its operations, largely leveraging its India-based workforce.
Cybersecurity / Threat Intelligence: A new report by SANS Institute analyzes the evolving cybersecurity landscape, focusing on skills, shortages, and shifts driven by the increasing prevalence of AI.
Cybersecurity / Malware: A new wave of attacks is leveraging fake tax search ads to distribute the ScreenConnect malware, which utilizes a Huawei driver to disable endpoint detection and response (EDR) systems.
Cybersecurity / Vulnerabilities: Microsoft has released patches for over 70 vulnerabilities in its software, including six zero-day flaws that were being actively exploited in the wild.
Cybersecurity / Privacy: The U.S. Federal Communications Commission (FCC) has banned the import of new consumer routers manufactured outside the U.S. due to security concerns.
Cybersecurity / IoT: The Kimwolf botnet has been identified as disrupting the Invisible Internet Project (I2P) network by attempting to flood it with infected devices through Sybil attacks.