Cybercrime

Malware targets Mac users by using Apple’s security tool

Using Apple’s proprietary string encryption, the malware evaded detection for months.

Legitimate PoC exploited to spread information stealer

It’s another example of how openly-posted proofs of concepts are being abused to sucker security researchers.

Ivanti zero-day exploited by APT group that previously targeted Connect Secure appliances

Vulnerability revealed by Ivanti has been exploited by the same group that targeted Connect Secure from January 2024.

New Mirai botnet targets industrial routers

Security researchers warn of a new variant of the Mirai botnet. Attackers used it for zero-day exploits on industrial routers.

China-linked hackers target Japan’s national security and high-tech industries

Authorities reveal advanced cyber tactics exploiting tools such as Windows Sandbox and Visual Studio Code, urging immediate defensive measures.

UN agency’s job application database breached, 42,000 records stolen

The agency, which supports the operation of international civil aviation, said air traffic is safe, but one analyst raised doubts about that.

The biggest data breach fines, penalties, and settlements so far

Hacks and data thefts, enabled by weak security, cover-ups or avoidable mistakes have cost these companies a total of nearly $4.4 billion and counting.

CyTwist Launches Advanced Security Solution to identify AI-Driven Cyber Threats in minutes

Russian hackers turn trusted online stores into phishing pages

The PhishWP WordPress plugin is well-equipped to turn legitimate shopping sites into phishing pages that capture sensitive payment and browser details.

More telecom firms were breached by Chinese hackers than previously reported

Salt Typhoon’s latest victims include Charter, Consolidated, and Windstream, underscoring the widening scope of China's cyberespionage campaign against critical US infrastructure.