A concerning security mistake involving a U.S. government employee has raised alarms over how powerful artificial intelligence tools are being handled. A developer working for the federal Department of Government Efficiency (DOGE) reportedly made a critical error by accidentally…
Category: CySecurity News – Latest Information Security and Hacking Incidents
Trustwave Reveals Dark Web Travel Agencies’ Secrets
Within the underground economy, dark web travel agencies have become one of the more sophisticated and profitable businesses. According to the Wall Street Journal’s report on Trustwave’s findings, these shady companies use credit card fraud, compromised loyalty program accounts,…
China Hacks Seized Phones Using Advanced Forensics Tool
There has been a significant concern raised regarding digital privacy and the practices of state surveillance as a result of an investigation conducted by mobile security firm Lookout. Police departments across China are using a sophisticated surveillance system, raising…
Hackers Exploit End-of-Life SonicWall Devices Using Overstep Malware and Possible Zero-Day
Cybersecurity experts from Google’s Threat Intelligence Group (GTIG) have uncovered a series of attacks targeting outdated SonicWall Secure Mobile Access (SMA) devices, which are widely used to manage secure remote access in enterprise environments. These appliances, although no longer…
Ukrainian Hackers Claim Major Cyberattack on Russian Drone Manufacturer
In an unsettling development in the ongoing cyber conflict linked to the Russia-Ukraine war, Ukrainian-aligned hacking groups have claimed responsibility for a large-scale cyberattack targeting a major Russian drone manufacturing company. The targeted firm, identified as Gaskar Group, is believed…
Hackers Use DNS Records to Hide Malware and AI Prompt Injections
Cybercriminals are increasingly leveraging an unexpected and largely unmonitored part of the internet’s infrastructure—the Domain Name System (DNS)—to hide malicious code and exploit security weaknesses. Security researchers at DomainTools have uncovered a campaign in which attackers embedded malware directly…
Healthcare Firms Face Major Threats from Risk Management and Legacy Tech, Report Finds
With healthcare facilities scrambling to pinpoint and address their top cyber threats, Fortified’s report provides some guidance on where to begin. The report identifies five major security gaps in healthcare organisations: inadequate asset inventories, a lack of unified risk…
UK Tax Fraud Scheme Uncovered Following Arrests in Romania
Despite being organized and waged on a global scale, phishing-based tax fraud schemes that target the United Kingdom have emerged in recent years as a significant development in the fight against transnational cyber-enabled financial crime. An operation coordinated by…
Online Criminals Steal $500K Crypto Via Malicious AI Browser Extension
A Russian blockchain engineer lost over $500,000 worth of cryptocurrencies in a sophisticated cyberattack, highlighting the persisting and increasing threats posed by hostile open-source packages. Even seasoned users can be duped into installing malicious software by attackers using public…
Gigabyte Firmware Vulnerability Enables Stealth UEFI Malware Infection
According to security researchers, a critical set of vulnerabilities has been identified in UEFI firmware for a number of motherboards manufactured by Gigabyte, causing serious concerns about device integrity and long-term system security, as well as serious concerns regarding device…