Security

International travelers targeted in immigration-themed phishing campaign

A sophisticated phishing campaign that first targeted travelers heading to Singapore has expanded to exploit those traveling to other nations, including the United Kingdom and Malaysia.
Read more about International travelers targeted in immigration-themed phishing campaign

Heartbreak hackers: Valentine’s day scams on the rise

With a love rush ahead, Valentine’s Day brings more than just romance. Cybersecurity experts are warning about a rise in phishing scams.
Read more about Heartbreak hackers: Valentine’s day scams on the rise

North Korean hackers Kimsuky exploiting the oldest critical vulnerability – the user

North Korean hackers have joined the cyberattack bandwagon, asking users to copy and paste malicious code into PowerShell.
Read more about North Korean hackers Kimsuky exploiting the oldest critical vulnerability – the user

Warning: fake Etsy invoices sent via legitimate domains

Emails with fake invoices are using a legitimate Etsy domain, making it more difficult to detect scams.
Read more about Warning: fake Etsy invoices sent via legitimate domains

Fewer than one in three Chrome users have ‘Enhanced Security’ enabled

Google said that over a billion Chrome users are using Enhanced Protection mode, which provides real-time AI-powered protection against dangerous online content. However, this means that almost 2.5 billion other Chrome users haven't enabled the feature.
Read more about Fewer than one in three Chrome users have ‘Enhanced Security’ enabled

CISA, experts urging users to patch new Windows zero-days: “test and deploy quickly”

The US Cybersecurity and Security Infrastructure Agency (CISA) has warned that two recently disclosed Microsoft zero-day vulnerabilities are being actively exploited by threat actors and urges users to patch them.
Read more about CISA, experts urging users to patch new Windows zero-days: “test and deploy quickly”

Building a website with AI? Here are the hidden risks you should be aware of

AI-written code enhances productivity, but its benefits also come with risks.
Read more about Building a website with AI? Here are the hidden risks you should be aware of

Millions exposed as 14M shipping records accidentally leaked

Hipshipper, an international shipping platform used by eBay, Shopify and Amazon sellers, has exposed millions of shipping labels, revealing personal customer data.
Read more about Millions exposed as 14M shipping records accidentally leaked

Weak encryption and privacy risks found in DeepSeek’s Android app

Just days after security flaws were found in the DeepSeek iOS app, another research team has discovered similar issues in the company’s Android app.
Read more about Weak encryption and privacy risks found in DeepSeek’s Android app

OpChildSafety: when parents fight back against predators

Throughout messages, individuals made a girl feel like she owed them – it was how they controlled her while offering friendship. This, in turn, caused her to lie when questioned about the messages.
Read more about OpChildSafety: when parents fight back against predators

Russia disappearing from the internet: cloaking digital presence brings strategic cyberwarfare advantage

Russia is rapidly isolating its internet-connected infrastructure from the outside world. In less than a half year, over two-thirds of previously discoverable services and devices have vanished behind the ‘Great Firewall.’
Read more about Russia disappearing from the internet: cloaking digital presence brings strategic cyberwarfare advantage

Over 2 million IPs bombard edge network devices in ongoing brute force login attack

The Shadowserver Foundation is warning of an alarming surge in brute force login attacks targeting web logins for multiple network devices, especially Palo Alto Networks, Invanti, and SonicWall.
Read more about Over 2 million IPs bombard edge network devices in ongoing brute force login attack

Don't bet on the Super Bowl without reading this: sites unprepared for cyber siege

With Super Bowl LIX just around the corner, security insiders are warning millions of gambling football fans that a slew of brand new AI-driven threats has descended upon America’s unprepared online betting industry.
Read more about Don't bet on the Super Bowl without reading this: sites unprepared for cyber siege

ChatGPT users warned 20M OpenAI account logins up for sale on hacker forum

The alleged login credentials to 20 million OpenAI ChatGPT accounts are posted for sale by a Russian threat actor on the infamous hacker marketplace BreachForums.
Read more about ChatGPT users warned 20M OpenAI account logins up for sale on hacker forum

Privacy and security flaws found in DeepSeek iOS mobile app

DeepSeek’s iOS app uses unencrypted data transmission, weak and hardcoded encryption keys, and sends unencrypted data to China, a report claims.
Read more about Privacy and security flaws found in DeepSeek iOS mobile app

Facebook copyright infringement scam reinvents itself

Hundreds of companies have been targeted in a new Facebook phishing campaign that emerged late last year.
Read more about Facebook copyright infringement scam reinvents itself

Malicious AI models infiltrating Hugging Face via ‘bad Pickles’

Hackers have found ways to hide malicious code in AI models hosted on the Hugging Face platform, ReversingLabs researchers warn.
Read more about Malicious AI models infiltrating Hugging Face via ‘bad Pickles’

The cyber game is on: whoever wins will dominate the Earth

Cyberattacks will play a decisive role in who wins the second space race.
Read more about The cyber game is on: whoever wins will dominate the Earth