Category: SecurityNews
-
Federal prosecutors indict alleged head of Black Kingdom ransomware
by
in SecurityNewsA man believed to be living in Yemen is accused of developing the ransomware and infecting about 1,500 computer systems in the U.S. and elsewhere between March 2021 and June 2023. First seen on cyberscoop.com Jump to article: cyberscoop.com/black-kingdom-ransomware-indictment-doj/
-
NCSC Recommends Security Measures Amid UK Retailer Hacks
by
in SecurityNewsUrges Companies to Enable MFA, Track Atypical Login Attempts. The U.K. cyber agency advised British companies to shore up cyber defenses in the wake of a wave of cyberattacks against retailers including against Co-op, Harrods and Mark & Spencer. We are not yet in a position to say if these attacks are linked, said the…
-
OpenAI Vows Guardrails After ChatGPT’s Yes-Man Moment
by
in SecurityNewsFlattery Glitch Forces Rollback, Potential Procedural Overhaul. OpenAI faced an unexpected publiclity storm when its latest GPT-4o update turned ChatGPT into an overzealous cheerleader, lavishing praise on everything from risky life choices to dubious opinions. CEO Sam Altman acknowledged the issue, with OpenAI outlining changes to prevent a repeat performance. First seen on govinfosecurity.com Jump…
-
Myanmar militia leader sanctioned by US over cyber scam connections
by
in SecurityNewsThe U.S. government sanctioned the Karen National Army, a militia group, and Saw Chit Thu, its leader, for their purported connections to the cyber fraud industry in Myanmar. First seen on therecord.media Jump to article: therecord.media/myanmar-militia-leader-us-sanctions-cyber-scam-industry
-
TeleMessage, a modified Signal clone used by US government officials, has been hacked
by
in SecurityNewsA hacker has exploited a vulnerability in TeleMessage, which provides modded versions of encrypted messaging apps such as Signal, Telegram, and WhatsApp, to extract archived messages and other data relating to U.S. government officials and companies who used the tool, 404 Media reported. TeleMessage came into the spotlight last week after it was reported that…
-
Kelly Benefits December data breach impacted over 400,000 individuals
by
in SecurityNewsKelly Benefits has determined that the impact of the recently disclosed data breach is much bigger than initially believed. Benefits and payroll solutions firm Kelly & Associates Insurance Group, aka Kelly Benefits, announced that the impact of a recently disclosed data breach is much bigger than initially estimated. The U.S.-based company provides benefits, payroll, and…
-
Darcula PhaaS steals 884,000 credit cards via SMS phishing texts
by
in SecurityNewsThe Darcula phishing-as-a-service (PhaaS) platform stole 884,000 credit cards from 13 million clicks on malicious links sent via text messages to targets worldwide. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/darcula-phaas-steals-884-000-credit-cards-via-sms-phishing-texts/
-
IRONSCALES Extends Email Security Platform to Combat Deepfakes
by
in SecurityNewsIRONSCALES has extended the reach of the machine learning algorithms it uses to identify email anomalies to now include the video and audio files used to create deepfakes. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/ironscales-extends-email-security-platform-to-combat-deepfakes/
-
BSidesLV24 Proving Ground An Adversarial Approach To Airline Revenue Management
by
in SecurityNews
Tags: conferenceAuthor/Presenter: Craig Lester Our sincere appreciation to BSidesLV, and the Presenters/Authors for publishing their erudite Security BSidesLV24 content. Originating from the conference’s events located at the Tuscany Suites & Casino; and via the organizations YouTube channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/bsideslv24-proving-ground-an-adversarial-approach-to-airline-revenue-management/
-
Seceon Wins Three Global Infosec Awards at RSAC 2025
by
in SecurityNewsAt Seceon, we’ve always believed that solving cybersecurity isn’t about adding more tools but building smarter ones. That belief was validated in a big way this year at RSAC 2025, where we proudly took home three Global Infosec Awards. 🆠Best Comprehensive Cybersecurity Platform🆠Best SMB Managed Security Services Platform (for aiSecurity-CGuard)🆠Best XDR Platform…
-
UK authorities warn of retail-sector risks following cyberattack spree
by
in SecurityNewsThree major retail brands, including Harrods and M&S, have been targeted in recent weeks. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/uk-authorities-retail-risks-cyberattack/747128/
-
Ukraine detains alleged FSB agent recruited via TikTok for spying on military
by
in SecurityNewsA 43-year-old woman was reportedly tasked with identifying and photographing the positions of Ukrainian forces near the front-line town of Pokrovsk, currently one of the most active combat zones. First seen on therecord.media Jump to article: therecord.media/ukraine-arrests-fsb-agent-spying-recruited-tiktok
-
Chinese Group TheWizards Exploits IPv6 to Drop WizardNet Backdoor
ESET has discovered Spellbinder, a new tool used by the China-linked cyber espionage group TheWizards to conduct AitM… First seen on hackread.com Jump to article: hackread.com/chinese-thewizards-exploits-ipv6-wizardnet-backdoor/
-
Microsoft is killing Skype today, pushes users to Teams
by
in SecurityNewsThe Skype video call and messaging service is shutting down today, 14 years after replacing Microsoft’s Windows Live Messenger. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-is-killing-skype-today-pushes-users-to-teams/
-
Gunra Ransomware’s Double”‘Extortion Playbook and Global Impact
by
in SecurityNewsGunra Ransomware, has surfaced as a formidable threat in April 2025, targeting Windows systems across industries such as real estate, pharmaceuticals, and manufacturing. As reported by CYFIRMA, this ransomware employs a sophisticated double-extortion strategy, encrypting victims’ data while exfiltrating sensitive information to coerce payments. With documented attacks in Japan, Egypt, Panama, Italy, and Argentina, Gunra’s…
-
DarkGPT & Co: Schattenseite der Intelligenz – Cybercrime 2.0 im Zeitalter der KI
by
in SecurityNewsDie Ergebnisse des AI Security Report von Check Point legen nahe, dass Verteidiger nun davon ausgehen müssen, dass KI nicht nur gegen sie selbst, sondern auch gegen ihre Systeme, Plattformen und die von ihnen verwalteten Identitäten eingesetzt wird. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/darkgpt-co-schattenseite-der-intelligenz-cybercrime-2-0-im-zeitalter-der-ki/a40667/
-
MY TAKE: RSAC 2025’s big takeaway, GenAI is growing up fast, but still needs human direction
by
in SecurityNewsSAN FRANCISCO, The cybersecurity industry showed up here in force last week: 44,000 attendees, 730 speakers, 650 exhibitors and 400 members of the media flooding Moscone Convention Center in the City by the Bay. Related: RSAC 2025 by the “¦ (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/my-take-rsac-2025s-big-takeaway-genai-is-growing-up-fast-but-still-needs-human-direction/
-
Russian hackers target Romanian state websites on election day
A Russian-linked hacktivist group launched DDoS attacks on several Romanian websites over the weekend, as voters headed to the polls to elect a new president. First seen on therecord.media Jump to article: therecord.media/hackers-target-romanian-websites-election
-
5 Tips You Should Know before Developing an Innovative Product
by
in SecurityNews
Tags: startupAre you aiming to develop an innovative startup that will make a boom effect in the modern market?… First seen on hackread.com Jump to article: hackread.com/tips-you-should-know-developing-innovative-product/
-
UK shares security tips after major retail cyberattacks
by
in SecurityNewsFollowing three high-profile cyberattacks impacting major UK retailers, the country’s National Cyber Security Centre (NCSC) has published guidance that all companies are advised to follow to strengthen their cybersecurity defenses. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/uk-shares-security-tips-after-major-retail-cyberattacks/
-
Hackers Exploit 21 Apps to Take Full Control of E-Commerce Servers
by
in SecurityNews
Tags: attack, backdoor, control, cyber, cybersecurity, exploit, hacker, injection, malicious, software, supply-chain, vulnerabilityCybersecurity firm Sansec has uncovered a sophisticated supply chain attack that has compromised 21 popular e-commerce applications, granting hackers full control over hundreds of online stores. This malicious campaign, which began with the injection of backdoors as early as six years ago, was activated this week, exposing vulnerabilities in software from vendors such as Tigren,…
-
Hackers Target HR Departments With Fake Resumes to Spread More_eggs Malware
by
in SecurityNewsThe financially motivated threat group Venom Spider, also tracked as TA4557, has shifted its focus to corporate Human Resources (HR) departments with a highly targeted spear-phishing operation. According to research by Arctic Wolf Labs, the group is leveraging legitimate job platforms and messaging services to send fraudulent job applications laced with malicious resumes. These deceptive…
-
RomCom RAT Targets UK Organizations Through Compromised Customer Feedback Portals
by
in SecurityNewsThe Russian-based threat group RomCom, also known as Storm-0978, Tropical Scorpius, and Void Rabisu, has been targeting UK companies in the retail, hospitality, and critical national infrastructure (CNI) sectors in a recently discovered cyber espionage and profit-driven operation called >>Operation Deceptive Prospect.
-
Hackers Use Pahalgam Attack-Themed Decoys to Target Indian Government Officials
by
in SecurityNewsThe Seqrite Labs APT team has uncovered a sophisticated cyber campaign by the Pakistan-linked Transparent Tribe (APT36) targeting Indian Government and Defense personnel. This operation, centered around the recent Pahalgam terror attack on April 22, 2025, leverages emotionally charged themes to distribute phishing documents and deploy malicious payloads. Exploiting Geopolitical Tensions for Cyber Espionage The…
-
Hackers Selling SS7 0-Day Exploit on Dark Web for $5,000
by
in SecurityNewsA newly discovered dark web listing claims to sell a critical SS7 protocol exploit for $5,000, raising alarms about global telecom security. The seller, operating under the alias >>GatewayPhantom,
-
How to Prevent AI Agents From Becoming the Bad Guys
by
in SecurityNewsWhen designed with strong governance principles, AI can drive innovation while maintaining the people’s trust and security. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/prevent-ai-agents-becoming-bad-guys
-
Vorankündigung: Datenschutz-Sommerakademie am 8. September 2025 in Kiel
by
in SecurityNews
Tags: unclassifiedFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/vorankuendigung-datenschutz-sommerakademie-8-september-2025-kiel
-
Why Secure Document Management Matters Against Cybersecurity Threats
by
in SecurityNewsCybersecurity threats aren’t just aimed at servers or customer databases. They also target a company’s most vital but… First seen on hackread.com Jump to article: hackread.com/secure-document-management-against-cybersecurity-threats/
-
Chimera Malware: Outsmarting Antivirus, Firewalls, and Human Defenses
by
in SecurityNewsX Business, a small e-commerce store dealing in handmade home décor, became the latest victim of a devastating cyberattack orchestrated by a sophisticated malware strain known as Chimera. What begann as a routine inventory management system update spiraled into a full-blown crisis within 12 hours. Customer orders ceased, staff accounts were locked, and the website…