Rare APT Collaboration Emerges Between Russia and North Korea

Researchers say Russia’s Gamaredon and North Korea’s Lazarus may be sharing infrastructure — a rare APT collaboration.

Fake Battlefield 6 Pirated Versions and Game Trainers Used to Deploy Stealers and C2 Agents

Bitdefender Labs has identified malware campaigns exploiting the popularity of EA's Battlefield 6 first-person shooter, ...

New ShadowV2 botnet malware used AWS outage as a test opportunity

A new Mirai-based botnet malware named 'ShadowV2' has been observed targeting IoT devices from D-Link, TP-Link, and other ...
ExtremeTech

Even ‘Prove You’re Not a Robot’ Checks Aren’t Safe From Scammers

Is this security check actually verifying that you're a human, or is it installing malware?

New macOS malware chain could cause a major security headache - here's what we know

Security researchers Jamf confirmed they have spotted attacks in the wild using ClickFix, an attack method in which the ...
Homeland Security TodayOpinion

Why Zero Trust is Still a National Security Imperative

Across the public sector, the “never trust, always verify” or “Zero Trust” concept used in cybersecurity has risen in ...
Greek City Times

New Android Malware “Sturnus” Can Read Your Signal, Telegram, and WhatsApp Messages – Even Though Encryption Is Not Broken

A highly stealthy new Android banking trojan named Sturnus has been discovered that can silently read every message you send or receive on Signal, ...
The Hacker News

RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware

RomCom just hit a US engineering firm via SocGholish for the first time, deploying Mythic Agent before defenders cut the ...
Techweez

New Android Banking Malware Can Read Your “Encrypted” Messages

Sturnus, a new Android banking Trojan, can bypass encrypted messaging, steal banking information, and hijacks devices.
Infosecurity Magazine

New FlexibleFerret Malware Chain Targets macOS With Go Backdoor

A new macOS malware chain using staged scripts and a Go-based backdoor has been attributed to FlexibleFerret, designed to steal credentials and maintain system access ...
SecurityWeek

WormGPT 4 and KawaiiGPT: New Dark LLMs Boost Cybercrime Automation

Palo Alto Networks researchers have conducted an analysis of two recently launched dark LLMs: WormGPT 4 and KawaiiGPT.

Watch out for this fake ‘Windows Update’ malware scam that’s going around

During the “installation” of this fake update, a hidden malicious command is copied to your clipboard. Then, you’re asked to ...