News

Google: Hackers target Salesforce accounts in data extortion attacks
Google has observed hackers claiming to be the ShinyHunters extortion group conducting social engineering attacks against ...
Malicious RubyGems pose as Fastlane to steal Telegram API data
Two malicious RubyGems packages posing as popular Fastlane CI/CD plugins redirect Telegram API requests to ...
CSO Online3d
Supply chain attack hits RubyGems to steal Telegram API data
Threat actor exploits Fastlane plugin trust to redirect Telegram traffic via C2 server after Vietnam’s ban, targeting mobile ...
Misspelled a site's name? Cybercriminals are exploiting this to infect your computer with malware - here's how to stay safe
A single typo could let hackers hijack your system using malware hidden in fake packages Cross-platform malware now fools ...
The Hacker News3h
Malicious Browser Extensions Infect Over 700 Users Across Latin America Since Early 2025
A phishing campaign infects 722 users with malicious browser extensions in Latin America to steal bank login data.
Computer Weekly6dOpinion
The hidden security risks of open source AI
The Security Think Tank considers how CISOs can best plan to facilitate the secure running of AI and Gen AI-based initiatives ...
How illicit markets fueled by data breaches sell your personal information to criminals
Every piece of personal data captured in a data breach – a passport number, Social Security number or login for a shopping service – has inherent value. Offenders can use the information in different ...
Here's how your personal information is sold to criminals
Every year, massive data breaches harm the public. The targets are email service providers, retailers and government agencies ...
Reddit sues AI startup Anthropic for allegedly using data without permission
Reddit sued the artificial intelligence startup Anthropic on Wednesday, accusing it of stealing data from the social media ...
How to tell if a login alert is real or a scam
Protect yourself from login alert scams with five security steps, including avoiding suspicious links, checking account activity and enabling two-factor authentication ...
JD Supra4d
Threat actors increasingly introducing malicious code into open source packages
The risks associated with leveraging open source libraries, and the review needed, are increasing. In the first half of 2025, ...
RFID Journal4d
The Looming Cybersecurity Threat at the Industrial IoT Edge
By implementing end-to-end security practices, industries can confidently navigate the IIoT landscape without leaving ...