Two Kenyan documentary filmmakers have come under surveillance by state security services for their work on a film about youth-led protests. Digital forensics experts revealed that their phones had been infected with the spyware...
U.S. Senator Ron Wyden has sent a letter to the Federal Trade Commission (FTC) demanding an investigation into Microsoft, accusing the company of “gross negligence” in the field of cybersecurity. The concern stems from...
A new tool called SpamGPT has emerged on underground forums and quickly become a focal point of discussion within the cybersecurity community. The platform combines the capabilities of generative AI with a fully fledged...
In August 2024, SonicWall issued security advisory SNWLID-2024-0015, disclosing an improper access control vulnerability in SSLVPN across Gen5, Gen6, and Gen7 devices. The flaw enabled attackers to bypass restrictions and gain access under specific...
A cyber operation against a Philippine military contractor has exposed a newly discovered and highly sophisticated malicious infrastructure, codenamed EggStreme. Research conducted by Bitdefender attributes the campaign to a Chinese threat group engaged in...
Experts at Oasis Security have reported a vulnerability in the Cursor code editor that enables arbitrary tasks to be executed upon opening a repository. The issue arises because, unlike Visual Studio Code, Cursor has...
Microsoft has issued a warning about two flaws in Windows BitLocker that could allow a local attacker—or malware already running on a machine—to escalate privileges and seize control of the system. Both defects are...
Millions of individuals and organizations entrust Google Drive with the storage of contracts, reports, photographs, and work documents, relying on the Windows desktop client to synchronize files between local folders and the cloud. Yet...
The U.S. Department of Justice has filed charges against Ukrainian national Volodymyr Viktorovych Timoshchuk, identified by investigators as one of the key administrators behind the LockerGoga, MegaCortex, and Nefilim ransomware operations. According to U.S....
Plex has notified its users of a security incident that affected a portion of customer data. The company maintains that the issue was swiftly contained, yet strongly advises all users to reset their passwords....
Researchers at Kroll have reported a new espionage campaign deploying the GONEPOSTAL malware. This tool was uncovered in operations attributed to the group KTA007, also known as Fancy Bear, APT28, and Pawn Storm. Its...
The subject of a new investigation is Alviva Holding, a provider whose infrastructure has long been a cornerstone for cybercriminal groups. The trigger for the probe was a change in contact details within the...
