Cybersecurity Articles

194/68 Wednesday, May 28, 2025 Nova Scotia Power, a Canadian electric utility company, officially confirmed on May 23, 2025, that it had fallen victim to a ransomware attack. Despite the theft and public exposure of customer data, the company stated that it did not pay any ransom, citing legal considerations related to sanctions and guidance […]

193/68 Wednesday, May 28, 2025 Cybersecurity experts at Trend Micro have uncovered a malicious campaign where cybercriminals are leveraging AI-generated TikTok videos to trick users into executing PowerShell commands that install dangerous malware such as Vidar and StealC. The videos claim to show users how to activate popular software like Windows, Microsoft Office, CapCut, or […]

192/68 Tuesday, May 27, 2025 Between May 19–22, 2025, law enforcement agencies from multiple countries carried out Operation ENDGAME, a large-scale coordinated cybercrime takedown led by Europol and Eurojust, aimed at dismantling the global infrastructure used to distribute ransomware. The operation resulted in the seizure of over 300 servers, the shutdown of more than 650 […]

191/68 Tuesday, May 27, 2025 A May 2025 report by Cofense Intelligence highlights a troubling cybersecurity trend: cybercriminals are increasingly abusing legitimate remote access tools (RATs) such as ConnectWise and Splashtop to infiltrate computer systems. Originally designed for IT professionals, these trusted tools have become double-edged swords — their legitimacy and familiarity allow them to […]

190/68 Monday, May 26, 2025 Europol, in cooperation with law enforcement agencies from 10 countries, has successfully carried out Operation RapTor, resulting in the arrest of 270 suspects involved in the illegal trade of drugs, weapons, and counterfeit goods on the Dark Web. The suspects were linked to marketplaces such as Nemesis, Bohemia, Kingdom Markets, […]

189/68 Monday, May 26, 2025 Cybersecurity researchers have uncovered a new malware campaign where hackers are distributing fake software installers disguised as popular tools such as LetsVPN and QQ Browser to deploy a malicious malware framework known as Winos 4.0. The campaign was first observed by Rapid7 in February 2025 and uses a multi-stage memory-resident […]

188/68 Friday, May 23, 2025 Security researchers from Codean Labs have disclosed a critical vulnerability in the OpenPGP.js JavaScript library (CVE-2025-47934), an open-source implementation used for encryption and digital signing. The flaw affects versions 5.0.1 to 5.11.2 and 6.0.0 to 6.1.0, and allows attackers to spoof digital signatures in inline-signed or signed+encrypted messages. Detached signatures […]

187/68 Friday, May 23, 2025 Google has introduced a new feature in the Chrome browser that allows its built-in password manager to automatically change user passwords when they are found to be compromised in a data breach. According to Google engineers Ashima Arora, Chirag Desai, and Eiji Kitamura, when Chrome detects that a password has […]

186/68 Thursday, May 22, 2025 Researchers from DomainTools Intelligence (DTI) have uncovered a large-scale cyber campaign in which over 100 fake Google Chrome extensions were created and distributed since February 2024. These malicious extensions were disguised as legitimate tools for productivity, VPNs, cryptocurrency, finance, and other services. They were promoted via phishing websites that closely […]

185/68 Thursday, May 22, 2025 A recent cyber threat activity report by ESET reveals a significant rise in Advanced Persistent Threat (APT) operations originating from Asia, particularly those linked to China and North Korea. These APT groups accounted for over 55% of all documented cyberattacks between Q4 2024 and Q1 2025. While Europe remains the […]