Tom’s Guide reports: Google has issued an emergency security update patch for Chrome in order to fix three security issues including one zero-day bug that has been actively exploited in the wild by hackers. This makes it the third active vulnerability to be patched via emergency update since the start of the year, with two others occurring in March […]
GBHackers reports: OpenSSH has become a standard tool for secure remote management on both Linux and Windows systems. Since its inclusion as a default component in Windows 10 version 1803, attackers have increasingly exploited its presence, leveraging it as a “Living Off the Land Binary” (LOLBIN). This means adversaries use trusted system tools ssh.exe to evade detection […]
Alert Number: I-051525-PSA, May 15, 2025 Source: FBI
Forbes reports: When you think of cybercriminal actors watching you, maybe phishing threats such as Hello Pervert, where the attacker claims to know where you live and has proof to back it up, spring to mind. Or how about the ransomware gang that has been found to install employee monitoring software to watch victims at work? Recent reports […]
TOI Tech Desk reports: A Russian-linked hacking group is reportedly exploiting two newly discovered zero-day vulnerabilities. Security researchers have warned that the Russian cybercrime group known as RomCom has been misusing these security flaws to target Firefox and Windows users in Europe and North America. These “zero-click” exploits, identified by security firm ESET, allowed hackers […]
All it took was knowing the license plate, and millions of KIA cars could be hacked in a matter of seconds. Unión Rayo reports that ethical researchers Sam Curry and Neiko Rivera found the vulnerability. It all starts with the portal Kia offers so users can connect their smartphones to the car. From there, they […]
TechRadar reports: Researchers have discovered a clever and elaborate phishing scheme that abused Google’s services to trick people into giving away their credentials for the platform. Lead developer of the Ethereum Name Service, Nick Johnson, recently received an email that seemed to have come from no-reply@google.com. The email said that law enforcement subpoenaed Google for content found in […]
The Record reports: Online networks of teenage boys “dedicated to inflicting harm and committing a range of criminality” are among the most significant concerns for British law enforcement, officials announced this week. Britain’s National Crime Agency (NCA) is warning of a “new generation of young, English-speaking cyber criminals” who are “predominantly teenage boys that often […]
The Washington Post reports: If you’re one of the 15 million people who shared your DNA with 23andMe, it’s time to delete your data. The genetic information company, best known for its saliva test kits, announced Sunday that it is headed to bankruptcy court to sell its assets. And 23andMe’s financial distress prompted California Attorney General Rob […]
Analytics Insight explains the risk to consumers and what individuals and companies can do to protect themselves: The US Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have warned Gmail and Microsoft Outlook users of an emerging ransomware threat called Medusa. The ransomware-as-a-service has been in operation since 2021 and has recently affected hundreds […]
