Stay Updated with the Latest Tech News
Get ahead of the curve with the latest insights, trends, and analysis in the tech world.
Browse by Category
Journalists and Civil Society Members Using WhatsApp Targeted by Paragon Spyware
This is yet another story of commercial spyware being used against journalists and civil society members. The journalists and other civil society members were being alerted of a possible breach of their devices, with WhatsApp telling the Guardian it had โhigh confidenceโ that the 90 users in question had been targeted and โpossibly compromised.โ It is not clear who was behind the attack. Like other spyware makers,...
Published on: February 03, 2025 | Source:
Share on Facebook
Share in Tweet (rip twitter)
Share on LinkedIn
Share on Reddit
Share on Threads
Share on Bluesky
DeepSeek Security: System Prompt Jailbreak, Details Emerge on Cyberattacks
Researchers found a jailbreak method that exposed DeepSeekโs system prompt, while others have analyzed the DDoS attacks aimed at the new gen-AI. The post DeepSeek Security: System Prompt Jailbreak, Details Emerge on Cyberattacks appeared first on SecurityWeek.
Published on: February 03, 2025 | Source:โก THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [27 February]
This week, our news radar shows that every new tech idea comes with its own challenges. A hot AI tool is under close watch, law enforcement is shutting down online spots that help cybercriminals, and teams are busy fixing software bugs that could let attackers in. From better locks on our devices to stopping sneaky tricks online, simple steps are making a big difference. Letโs take a
Published on: February 03, 2025 | Source:โก THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [3 February]
This week, our news radar shows that every new tech idea comes with its own challenges. A hot AI tool is under close watch, law enforcement is shutting down online spots that help cybercriminals, and teams are busy fixing software bugs that could let attackers in. From better locks on our devices to stopping sneaky tricks online, simple steps are making a big difference. Letโs take a
Published on: February 03, 2025 | Source:Coyote Malware Expands Reach: Now Targets 1,030 Sites and 73 Financial Institutions
Brazilian Windows users are the target of a campaign that delivers a banking malware known as Coyote. "Once deployed, the Coyote Banking Trojan can carry out various malicious activities, including keylogging, capturing screenshots, and displaying phishing overlays to steal sensitive credentials," Fortinet FortiGuard Labs researcher Cara Lin said in an analysis published last week. The
Published on: February 03, 2025 | Source:Insurance Company Globe Life Notifying 850,000 People of Data Breach
Insurance firm Globe Life says a threat actor may have compromised the personal information of roughly 850,000 individuals. The post Insurance Company Globe Life Notifying 850,000 People of Data Breach appeared first on SecurityWeek.
Published on: February 03, 2025 | Source:What Is Attack Surface Management?
Attack surfaces are growing faster than security teams can keep up โ to stay ahead, you need to know whatโs exposed and where attackers are most likely to strike. With cloud adoption dramatically increasing the ease of exposing new systems and services to the internet, prioritizing threats and managing your attack surface from an attackerโs perspective has never been more important. In this
Published on: February 03, 2025 | Source:1 Million Impacted by Data Breach at Connecticut Healthcare Provider
Community Health Center, Inc. says hackers stole the personal and health information of over one million individuals. The post 1 Million Impacted by Data Breach at Connecticut Healthcare Provider appeared first on SecurityWeek.
Published on: February 03, 2025 | Source:Crazy Evil Gang Targets Crypto with StealC, AMOS, and Angel Drainer Malware
A Russian-speaking cybercrime gang known as Crazy Evil has been linked to over 10 active social media scams that leverage a wide range of tailored lures to deceive victims and trick them into installing malware such as StealC, Atomic macOS Stealer (aka AMOS), and Angel Drainer. "Specializing in identity fraud, cryptocurrency theft, and information-stealing malware, Crazy Evil employs a
Published on: February 03, 2025 | Source:Texas Governor Orders Ban on DeepSeek, RedNote for Government Devices
โTexas will not allow the Chinese Communist Party to infiltrate our stateโs critical infrastructure through data-harvesting AI and social media apps,โ Abbott said. The post Texas Governor Orders Ban on DeepSeek, RedNote for Government Devices appeared first on SecurityWeek.
Published on: February 01, 2025 | Source:U.S. and Dutch Authorities Dismantle 39 Domains Linked to BEC Fraud Network
U.S. and Dutch law enforcement agencies have announced that they have dismantled 39 domains and their associated servers as part of efforts to disrupt a network of online marketplaces originating from Pakistan. The action, which took place on January 29, 2025, has been codenamed Operation Heart Blocker. The vast array of sites in question peddled phishing toolkits and fraud-enabling tools and
Published on: February 01, 2025 | Source:BeyondTrust Zero-Day Breach Exposed 17 SaaS Customers via Compromised API Key
BeyondTrust has revealed it completed an investigation into a recent cybersecurity incident that targeted some of the company's Remote Support SaaS instances by making use of a compromised API key. The company said the breach involved 17 Remote Support SaaS customers and that the API key was used to enable unauthorized access by resetting local application passwords. The breach was first flagged
Published on: February 01, 2025 | Source:Meta Confirms Zero-Click WhatsApp Spyware Attack Targeting 90 Journalists, Activists
Meta-owned WhatsApp on Friday said it disrupted a campaign that involved the use of spyware to target journalists and civil society members. The campaign, which targeted around 90 members, involved the use of spyware from an Israeli company known as Paragon Solutions. The attackers were neutralized in December 2024. In a statement to The Guardian, the encrypted messaging app said it has reached
Published on: February 01, 2025 | Source:Malvertising Scam Uses Fake Google Ads to Hijack Microsoft Advertising Accounts
Cybersecurity researchers have discovered a malvertising campaign that's targeting Microsoft advertisers with bogus Google ads that aim to take them to phishing pages that are capable of harvesting their credentials. "These malicious ads, appearing on Google Search, are designed to steal the login information of users trying to access Microsoft's advertising platform," Jรฉrรดme Segura, senior
Published on: February 01, 2025 | Source:DeepSeek Jailbreak Reveals Its Entire System Prompt
Now we know exactly how DeepSeek was designed to work, and we may even have a clue toward its highly publicized scandal with OpenAI.
Published on: January 31, 2025 | Source:Friday Squid Blogging: On Squid Brains
Interesting. Blog moderation policy.
Published on: January 31, 2025 | Source:Community Health Center Data Breach Affects 1M Patients
The CHC remains operational, but a host of personal data is now in the hands of a "skilled cybercriminal," it said.
Published on: January 31, 2025 | Source:DoJ Shutters Cybercrime Forums Behind Attacks on 17M Americans
The "Cracked" and "Nulled" Dark Web sites are now offline, along with the Pakistani "Saim Raza" network of underground forums (aka HeartSender).
Published on: January 31, 2025 | Source:Bill requiring federal contractors to have vulnerability disclosure policies gets House redo
Reps. Nancy Mace and Shontel Brown reintroduced VDP legislation after the 2024 bipartisan, bicameral bill didnโt get a full Senate vote. The post Bill requiring federal contractors to have vulnerability disclosure policies gets House redo appeared first on CyberScoop.
Published on: January 31, 2025 | Source:WhatsApp says it disrupted spyware campaign aimed at reporters, civil society
The company linked to the campaign recently signed a deal with U.S. Immigration and Customs Enforcement. The post WhatsApp says it disrupted spyware campaign aimed at reporters, civil society appeared first on CyberScoop.
Published on: January 31, 2025 | Source:State Data Privacy Regulators Are Coming. What Story Will You Tell Them?
Regulators are ready to enforce new state data privacy laws. Here's how experts say organizations can stay compliant and avoid penalties.
Published on: January 31, 2025 | Source:FBI, Dutch Police Disrupt โManipulatersโ Phishing Gang
The FBI and authorities in The Netherlands this week seized a number of servers and domains for a hugely popular spam and malware dissemination service operating out of Pakistan. The proprietors of the service, who use the collective nickname "The Manipulaters," have been the subject of three stories published here since 2015. The FBI said the main clientele are organized crime groups that try to trick victim companies...
Published on: January 31, 2025 | Source:Tenable to Acquire Vulcan Cyber to Boost Exposure Management Focus
The deal, expected to close this quarter, will give Tenable One Exposure Management much-needed integration with over 100 third-party security tools and platforms.
Published on: January 31, 2025 | Source:Code-Scanning Tool's License at Heart of Security Breakup
Nine application security toolmakers band together to fork the popular Semgrep code-scanning project, touching off a controversy over access to features and fairness.
Published on: January 31, 2025 | Source:In Other News: Browser Syncjacking, Fake AWS Hack, Google Blocked 2M Bad Apps
Noteworthy stories that might have slipped under the radar: stealing browser data via Syncjacking, hackers falsely claim AWS breach, Google prevented 2 million bad apps from reaching Google Play. The post In Other News: Browser Syncjacking, Fake AWS Hack, Google Blocked 2M Bad Apps appeared first on SecurityWeek.
Published on: January 31, 2025 | Source:Even the US government can fall victim to cryptojacking
Documents reveal that USAID was victimized by a password spray attack that resulted in roughly $500,000 in Microsoft service charges. The post Even the US government can fall victim to cryptojacking appeared first on CyberScoop.
Published on: January 31, 2025 | Source:Can AI & the Cyber Trust Mark Rebuild Endpoint Confidence?
The Cyber Trust Mark has the potential to change how we define and measure security at the endpoint level. But potential isn't enough.
Published on: January 31, 2025 | Source:Italy Blocks Access to the Chinese AI Application DeepSeek to Protect Usersโ Data
Italyโs data protection authority expressed dissatisfaction with DeepSeekโs response to its query about what personal data is collected, where it is stored and how users are notified. The post Italy Blocks Access to the Chinese AI Application DeepSeek to Protect Usersโ Data appeared first on SecurityWeek.
Published on: January 31, 2025 | Source:How scammers are exploiting DeepSeek's rise
As is their wont, cybercriminals waste no time launching attacks that aim to cash in on the frenzy around the latest big thing โ plus, what else to know before using DeepSeek
Published on: January 31, 2025 | Source:US, Dutch Authorities Disrupt Pakistani Hacking Shop Network
US and Dutch authorities seized 39 domains to disrupt a network of hacking and fraud marketplaces operated by Saim Raza. The post US, Dutch Authorities Disrupt Pakistani Hacking Shop Network appeared first on SecurityWeek.
Published on: January 31, 2025 | Source:CISA and FDA Warn of Critical Backdoor in Contec CMS8000 Patient Monitors
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Food and Drug Administration (FDA) have issued alerts about the presence of hidden functionality in Contec CMS8000 patient monitors and Epsimed MN-120 patient monitors. The vulnerability, tracked as CVE-2025-0626, carries a CVSS v4 score of 7.7 on a scale of 10.0. The flaw, alongside two other issues, was reported to CISA
Published on: January 31, 2025 | Source:2 Arrested in Takedown of Nulled, Cracked Hacking Forums
Two individuals have been arrested and one alleged admin has been charged in the takedown of the Nulled and Cracked cybercrime forums. The post 2 Arrested in Takedown of Nulled, Cracked Hacking Forums appeared first on SecurityWeek.
Published on: January 31, 2025 | Source:New York Blood Bank Hit by Ransomware
New York Blood Center Enterprises and its operating divisions have taken systems offline to contain a ransomware attack. The post New York Blood Bank Hit by Ransomware appeared first on SecurityWeek.
Published on: January 31, 2025 | Source:CISA, FDA Warn of Dangerous Backdoor in Contec Patient Monitors
CISA and FDA say Contec patient monitors used in the US contain a backdoor function that could allow remote attackers to tamper with the device. The post CISA, FDA Warn of Dangerous Backdoor in Contec Patient Monitors appeared first on SecurityWeek.
Published on: January 31, 2025 | Source:ChatGPT, DeepSeek Vulnerable to AI Jailbreaks
Different research teams have demonstrated jailbreaks against ChatGPT, DeepSeek, and Alibabaโs Qwen AI models. The post ChatGPT, DeepSeek Vulnerable to AI Jailbreaks appeared first on SecurityWeek.
Published on: January 31, 2025 | Source: