Recent research from the cybersecurity company NordVPN has revealed a significant rise in online threats, with over 669 million malware attacks recorded in the UK in 2024 alone. This alarming number highlights the increasing risk of falling victim to…
Category: CySecurity News – Latest Information Security and Hacking Incidents
Cybercriminals Abuse Microsoft Teams & Quick Assist for Remote Access
Trend Micro security experts discovered a sophisticated cyberattack that included social engineering tactics and commonly employed remote access tools. The attack, which uses stealthy infostealer malware, gives thieves permanent access over vulnerable PCs and allows them to steal sensitive…
Cyberattacks on Single Points of Failure Are Driving Major Industry Disruptions
Cybercriminals are increasingly targeting single points of failure within companies, causing widespread disruptions across industries. According to cybersecurity firm Resilience, attackers have shifted their focus toward exploiting key vulnerabilities in highly interconnected organizations, triggering a “cascading effect of disruption and…
AI as a Key Solution for Mitigating API Cybersecurity Threats
Artificial Intelligence (AI) is continuously evolving, and it is fundamentally changing the cybersecurity landscape, enabling organizations to mitigate vulnerabilities more effectively as a result. As artificial intelligence has improved the speed and scale with which threats can be detected…
Cyfox Launches OmniSec vCISO: Harnessing GenAI for Comprehensive Compliance and Cybersecurity Management
Cysecurity News recently interviewed CYFOX to gain an in-depth understanding of their new platform, OmniSec vCISO. The platform, designed to simplify compliance and bolster security operations, leverages advanced generative AI (genAI) and aims to transform what was traditionally the manual…
SilentCryptominer Threatens YouTubers to Post Malware in Videos
Experts have discovered an advanced malware campaign that exploits the rising popularity of Windows Packet Divert drivers to escape internet checks. Malware targets YouTubers Hackers are spreading SilentCryptominer malware hidden as genuine software. It has impacted over 2000 victims in…
Private API Keys and Passwords Discovered in a Popular AI Training dataset
The Common Crawl dataset, which is used to train several artificial intelligence models, has over 12,000 legitimate secrets, including API keys and passwords. The Common Crawl non-profit organisation maintains a vast open-source archive of petabytes of web data collected…
Hackers Exploit Flaw in Microsoft-Signed Driver to Launch Ransomware Attacks
Cybercriminals are exploiting a vulnerability in a Microsoft-signed driver developed by Paragon Software, known as BioNTdrv.sys, to carry out ransomware attacks. This driver, part of Paragon Partition Manager, is typically used to manage hard drive space, but hackers have…
Google to Introduce QR Codes for Gmail 2FA Amid Rising Security Concerns
Google is set to introduce QR codes as a replacement for SMS-based two-factor authentication (2FA) codes for Gmail users in the coming months. While this security update aims to improve authentication methods, it also raises concerns, as QR code-related…
New Polymorphic Attack Enables Malicious Chrome Extensions to Impersonate Password Managers and Banking Apps
Researchers at SquareX Labs have uncovered a sophisticated “polymorphic” attack targeting Google Chrome extensions, allowing malicious extensions to seamlessly morph into trusted ones, such as password managers, cryptocurrency wallets, and banking apps. The attack exploits Chrome’s ‘chrome.management’ API to gain…