Security

Fraudulent Android apps displaying intrusive ads downloaded 60 million times on Google Play

Hundreds of Android apps are showing out-of-context ads and trying to persuade users to give away their credentials.
Read more about Fraudulent Android apps displaying intrusive ads downloaded 60 million times on Google Play

Major US teacher's union breach exposed 500k members' to hackers

Over 500,000 members of Pennsylvania's major teacher's union had sensitive personal and financial data stolen in a cyberattack, despite PSEA reassurances.
Read more about Major US teacher's union breach exposed 500k members' to hackers

Hackers hide malware in link files, but Microsoft refuses to fix the flaw

State-sponsored hackers from North Korea, Iran, Russia, and China are crafting malicious links that compromise governments, military, and other critical organizations, leading to espionage and data theft. Yet, Microsoft declined to address the vulnerability with a security patch, Trend Micro has said in a report.
Read more about Hackers hide malware in link files, but Microsoft refuses to fix the flaw

“Pay me or I tell Snowden:” are cybercriminals getting more desperate?

Desperation or creativity – how low are ransomware gangs ready to go to get paid? One gang has threatened to contact Edward Snowden if its victim doesn’t pay a ransom.
Read more about “Pay me or I tell Snowden:” are cybercriminals getting more desperate?

Over 320K Medicare applications exposed, revealing patients’ health data

Insurance brokerage firm Oberlin Marketing has left an open bucket leaking hundreds of thousands of sensitive documents, including customer health condition status and financial info.
Read more about Over 320K Medicare applications exposed, revealing patients’ health data

DeepSeek created Chrome infostealer without hesitation, company remains silent

Adoption of AI tools is soaring, and so are the inevitable safety issues. Researchers have found a new way to break popular AI models to commit crimes.
Read more about DeepSeek created Chrome infostealer without hesitation, company remains silent

New trojan can spy, steal crypto and mask itself to avoid detection

A new Windows remote access trojan (RAT), dubbed StilachiRAT, uses sophisticated techniques to avoid detection and can do tasks from reconnaissance to cryptocurrency theft.
Read more about New trojan can spy, steal crypto and mask itself to avoid detection

Hackers know half of passwords entered online, Cloudflare finds

People use already compromised passwords 41% of the time when logging into email, streaming services, social networks, or any other online services, Cloudflare’s analysis reveals.
Read more about Hackers know half of passwords entered online, Cloudflare finds

Sperm bank California Cryobank confirms data breach

California Cryobank (CCB), one of the largest reproductive tissue banks in the world, has disclosed a data breach that affected an unknown number of Americans. Law firms are investigating a potential case for class action amid concerns that “biometric data may be compromised.”
Read more about Sperm bank California Cryobank confirms data breach

“Rivals fabricated this” responds Pinduoduo company to an alleged ransomware

An alleged cyber heist may have exposed the data of 700 million Pinduoduo users. The company denies any breach calling it “entirely false.”
Read more about “Rivals fabricated this” responds Pinduoduo company to an alleged ransomware

Hackers claim they’ve breached Orange and have “very detailed” information

Babuk ransomware, a cybercrime ring that targets major enterprises, has posted unverified claims about a massive data breach at Orange, a major telecom.
Read more about Hackers claim they’ve breached Orange and have “very detailed” information

Customers of “China‘s Amazon” had their passwords stolen, hackers say

Jingdong, China‘s largest retailer, has allegedly been targeted by a ransomware cartel. The hackers claim they’ve stolen copious amounts of company data, including customer passwords.
Read more about Customers of “China‘s Amazon” had their passwords stolen, hackers say

Hackers claim major Chinese online shopping platform Taobao

Babuk ransomware, a threat actor targeting big enterprises, claims to have stolen data from Taobao, an Alibaba Group-owned online shopping platform and the eighth most-visited website in China.
Read more about Hackers claim major Chinese online shopping platform Taobao

We also reveal a secret: this is how we tested thousands of leaky iOS apps

We went behind the scenes of the biggest investigation into iOS app safety so far. We easily gained access to our colleague chats – imagine what threat actors could do.
Read more about We also reveal a secret: this is how we tested thousands of leaky iOS apps

A hacktivist's manifesto: The irony of Dark Storm Team’s massive DDoS attack against X

Whenever we think of hacktivism, what comes to mind? You see, the spirit of hacktivism is enriched with a broad palette of ideological flavors.
Read more about A hacktivist's manifesto: The irony of Dark Storm Team’s massive DDoS attack against X

DeepSeek’s chatbot can be used to generate ransomware and keylogger

DeepSeek’s reasoning model R1 can easily be tricked into generating malicious code, even though it still needs human input, research shows.
Read more about DeepSeek’s chatbot can be used to generate ransomware and keylogger

Booking.com scammers unleash credential-stealing malware havoc against hosts

Booking.com hosts are being targeted with dangerous credential-stealing malware, Microsoft warns. Scammers convincingly impersonate the platform to craft fraudulent emails about complaining guests, promotion opportunities, account verification, and other requests.
Read more about Booking.com scammers unleash credential-stealing malware havoc against hosts

Getting hacked through fonts: Facebook warns about major vulnerability

Meta has warned about a dangerous vulnerability in FreeType, a widely used font-rendering library that many applications depend on. Hackers may already have exploited it in the wild. Some Linux distributions include vulnerable versions.
Read more about Getting hacked through fonts: Facebook warns about major vulnerability