503/68 Tuesday, December 2, 2025 Cybersecurity firm CloudSEK has uncovered a network of over 2,000 fake shopping websites impersonating major brands such as Amazon, Apple, Samsung, Dell, Ray-Ban, and Xiaomi, with the goal of defrauding consumers during Black Friday and Cyber Monday sales. The campaign appears to be a large-scale, coordinated operation, with multiple fraudulent […]
502/68 Tuesday, December 2, 2025 Cybersecurity firm Cleafy has reported the discovery of a new Android malware called Albiriox, developed by a Russian-speaking cybercriminal group and advertised on underground forums as a Malware-as-a-Service (MaaS) for $720 per month. The malware is classified as a banking trojan designed specifically for on-device fraud (ODF), enabling attackers to […]
501/68 Tuesday, December 2, 2025 Security researchers at Socket have issued a warning after uncovering a major expansion of the “Contagious Interview” campaign, which is linked to a North Korean state-backed threat group. The attackers have uploaded over 197 malicious npm packages into the developer ecosystem, using them to distribute a new malware family dubbed […]
500/68 Monday, December 1, 2025 Microsoft is warning users about a Windows 11 bug that began appearing after updates released in August 2025 (including KB5064081). The issue affects Windows 11 versions 24H2 and 25H2 on devices that have multiple sign-in options enabled, causing the password sign-in icon to disappear from the Lock Screen. Microsoft clarified […]
499/68 Monday, December 1, 2025 The French Soccer Federation (FFF) has disclosed a data breach after attackers used a compromised user account to access the federation’s member management system. The breach resulted in the unauthorized extraction of personal information belonging to some members. Although the FFF has not yet confirmed the total number of affected […]
498/68 Monday, December 1, 2025 GreyNoise Labs, a cybersecurity threat intelligence company, has launched a new tool called “GreyNoise IP Check,” now available for the general public to use for free. The tool allows users to check whether their IP address is being used in malicious activities-such as botnets or residential proxies-without their knowledge. Over […]
497/68 Friday, November 28, 2025 Cybercriminals are exploiting the popularity of Battlefield 6 to trick players into downloading malicious software. According to a report from Bitdefender Labs, a large number of pirated files, fake installers, and counterfeit game trainers are being distributed across file-sharing websites and torrent platforms. Threat actors are impersonating well-known game-cracking groups […]
496/68 Friday, November 28, 2025 The Royal Borough of Kensington and Chelsea (RBKC) and Westminster City Council (WCC) have disclosed that several of their IT systems became unavailable after suffering a cyberattack, disrupting key public services including customer service centers, communication channels, and online platforms. Both councils have activated emergency response plans to ensure essential […]
495/68 Friday, November 28, 2025 A new report from the Google Threat Intelligence Group (GTIG) reveals emerging techniques used by threat actors who are experimenting with embedding large language models (LLMs)-such as Google Gemini and Hugging Face models-directly into malware. The goal is to enable malware to rewrite its own code or generate new attack […]
494/68 Thursday, November 27, 2025 Security researchers from AISLE have disclosed a severe vulnerability, tracked as CVE-2025-13016, found in the WebAssembly (Wasm) component of the Firefox web browser. The flaw remained undetected for more than six months and stems from a single-line error in Firefox’s Garbage Collection (GC) code. The issue leads to a stack […]
