AI Models Are Becoming Attack Targets.
Artificial intelligence is no longer just a business enabler. It is now one of the most aggressively targeted layers in the modern attack surface. Recent security research reveals a sharp rise in attempts to manipulate, extract, poison, or exploit generative AI models used across critical industries. The finding is clear. As organizations adopt AI for […]
Malicious Visual Studio Code (VS Code) extensions
In 2025, researchers discovered a new wave of malicious Visual Studio Code (VS Code) extensions that threaten developers, software teams, and entire organizations. What appears as a helpful plugin can become a vehicle for cryptomining, credential theft, remote backdoors, or supply-chain compromise. This highlights a growing trend: developer tools themselves are being weaponized, and the […]
Coupang’s 33.7 Million‑User Breach
On 29 November 2025, Coupang, South Korea’s largest e-commerce platform, confirmed a massive data breach affecting approximately 33.7 million customer accounts. Personal information including names, email addresses, phone numbers, delivery addresses, and order histories were exposed. While payment credentials and login passwords were reportedly safe, the incident poses a long-term risk for identity theft, phishing […]
New Android Malware Targeting 400+ Apps
A newly identified Android malware known as Albiriox is now being distributed through a malware-as-a-service (MaaS) model, significantly raising the threat level for users and organizations. According to recent research, Albiriox targets more than 400 banking, fintech, digital-wallet, crypto-exchange, payment-processing, and trading applications. This development highlights the growing sophistication of mobile threats and the increasing […]
Albiriox: A New Android Malware
Cybercriminals continue to evolve their tactics, and the emergence of Albiriox, a new Android malware, marks a troubling advancement in mobile fraud operations. Unlike traditional banking trojans, Albiriox operates as a sophisticated Malware as a Service (MaaS) offering attackers full remote control of victim devices. Its primary targets include banking apps, fintech services, and cryptocurrency […]
ClickFix Technique to Deliver Malware
Remote work tools are now essential for business, but attackers continue to exploit trust in everyday platforms. A recent malware campaign targets users through a fake Google Meet page hosted on gogl-meet[.]com, using the ClickFix social engineering technique to bypass traditional browser security and deliver a Remote Access Trojan (RAT). The attack begins when a […]
London Councils Hit by Cyberattack
Recent reports have revealed that several councils in West London, including Kensington and Chelsea, Westminster, and Hammersmith & Fulham, experienced significant disruptions to their IT systems and phone lines due to a cyberattack. The root cause appears to be linked to a shared service provider that supplies IT infrastructure to all three councils. This incident […]
ShadowV2 Botnet
A newly uncovered malware variant, ShadowV2, is rapidly expanding across vulnerable IoT environments, targeting unpatched devices to assemble a powerful botnet capable of high-volume DDoS attacks. According to recent research, the operation focuses on exploiting long-standing weaknesses in consumer and enterprise routers, IP cameras, NVRs, and other IoT systems. ShadowV2 is a modern evolution of […]
Malicious Chrome Extension Targeting Solana Users: Critical Security Alert
A malicious Chrome extension disguised as “Crypto Copilot” has been identified stealing funds from Solana users by injecting unauthorized SOL transfer instructions into legitimate wallet transactions. Although it appeared legitimate on the Chrome Web Store, the extension performed hidden operations that allowed attackers to drain tokens directly from user wallets. The extension functioned like a […]
WormGPT 4 and KawaiiGPT
Security researchers have uncovered a disturbing new trend: cybercriminals are marketing lifetime or free access to AI tools designed specifically to facilitate hacking, phishing, and ransomware campaigns. The tools in question – WormGPT 4 and KawaiiGPT – grant even non-skilled actors a high-powered “shortcut” into malicious operations. What Are WormGPT 4 and KawaiiGPT WormGPT 4 […]